Privacy Policy

 

1. Data protection at a glance

General

The following gives a simple overview of what happens to your personal information when you visit our website. Personal information is any data with which you could be personally identified. Detailed information on the subject of data protection can be found in our privacy policy found below.

Data collection on our website

Who is responsible for the data collection on this website?

The data collected on this website are processed by the website operator. The operator's contact details can be found in the website's required legal notice.

How do we collect your data?

Some data are collected when you provide it to us. This could, for example, be data you enter on a contact form.

Other data are collected automatically by our IT systems when you visit the website. These data are primarily technical data such as the browser and operating system you are using or when you accessed the page. These data are collected automatically as soon as you enter our website.

What do we use your data for?

Part of the data is collected to ensure the proper functioning of the website. Other data can be used to analyze how visitors use the site.

What rights do you have regarding your data?

You always have the right to request information about your stored data, its origin, its recipients, and the purpose of its collection at no charge. You also have the right to request that it be corrected, blocked, or deleted. You can contact us at any time using the address given in the legal notice if you have further questions about the issue of privacy and data protection. You may also, of course, file a complaint with the competent regulatory authorities.

2. General information and mandatory information

Data protection

The operators of this website take the protection of your personal data very seriously. We treat your personal data as confidential and in accordance with the statutory data protection regulations and this privacy policy.

If you use this website, various pieces of personal data will be collected. Personal information is any data with which you could be personally identified. This privacy policy explains what information we collect and what we use it for. It also explains how and for what purpose this happens.

Please note that data transmitted via the internet (e.g. via email communication) may be subject to security breaches. Complete protection of your data from third-party access is not possible.

Notice concerning the party responsible for this website

The party responsible for processing data on this website is:

LINK GmbH
Bahnhofsallee 59 - 61
35510 Butzbach

Telephone: + 49 (0) 60 33 / 9 74 04 - 0
Email: webmaster@link-gmbh.com

The responsible party is the natural or legal person who alone or jointly with others decides on the purposes and means of processing personal data (names, email addresses, etc.).

Data subject rights

When personal data concerning you is processed you have the following rights as the data subject pursuant to GDPR.

1. Right to information

You can request confirmation from the data controller of whether personal data concerning you are being processed by us.<br/> If personal data concerning you is being processed, you can request the following information from the controller:

  • the purposes for which the personal data are being processed;
  • the categories of personal data being processed;
  • the recipients or categories of recipients to whom the personal data has been or will be disclosed;
  • the period for which the personal data will be stored, or if that is not possible, the criteria used to determine that period;
  • the existence of the right to obtain from the controller rectification or erasure of personal data concerning you, the right to restriction of processing by the controller or the right to object to processing;
  • the right to lodge a complaint with a supervisory authority;
  • all available information about the origin of the data if the personal data were not collected from the data subject;
  • the existence of automated decision-making, including profiling, referred to in Article 22 (1) and (4) GDPR and, at least in those cases, meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for the data subject.

 

You have the right to obtain information about whether the personal data concerning you is transferred to a third country or an international organisation. In this connection you can obtain appropriate safeguards pursuant to Article 46 GDPR in connection with the transfer of personal data.

2. Right to rectification

You have the right to obtain the rectification of personal data or the supplementation of incomplete personal data concerning you from the data controller. The data controller will comply without undue delay.

3. Right to restriction of processing

When one of the following applies you have the right to obtain from the controller restriction of processing:

  • If you contest the accuracy of the personal data, for a period enabling the controller to verify the accuracy of the personal data;
  • If the processing is unlawful and you oppose the erasure of the personal data and request the restriction of their use instead;
  • If the controller no longer needs the personal data for the purposes of the processing, but they are required by you for the establishment, exercise or defence of legal claims or;
  • If you have objected to processing pursuant to Article 21(1) pending the verification of whether the legitimate grounds of the controller override your grounds.

 

Where processing has been restricted, such personal data shall, with the exception of storage, only be processed with the data subject’s consent or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State.

If you have obtained restriction of processing pursuant to the above the data controller will inform you before the restriction of processing is lifted.

4. Right to erasure

a) Obligation to erase personal data

You have the right to obtain from the controller the erasure of personal data concerning you without undue delay and the controller has the obligation to erase personal data without undue delay where one of the following grounds applies:

  • The personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed.
  • You withdraw your consent on which the processing is based according to Article 6 (1) a, or Article 9 (2) a GDPR, and where there is no other legal ground for the processing.
  • You object to the processing pursuant to Article 21 (1) and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Article 21 (2) GDPR.
  • The personal data concerning you have been unlawfully processed.
  • The personal data have to be erased for compliance with a legal obligation in Union or Member State law to which the controller is subject.
  • The personal data have been collected in relation to the offer of information society services referred to in Article 8 (1) GDPR.

 

b) Information to third parties

Where the controller has made the personal data public and is obliged pursuant to Article 17 (1) GDPR to erase the personal data, the controller, taking account of available technology and the cost of implementation, shall take reasonable steps, including technical measures, to inform controllers which are processing the personal data that the data subject has requested the erasure by such controllers of any links to, or copy or replication of, those personal data.

c) Exceptions

The right to obtain erasure does not apply if the processing is necessary

  • for exercising the right of freedom of expression and information;
  • for compliance with a legal obligation which requires processing by Union or Member State law to which the controller is subject or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
  • for reasons of public interest in the area of public health in accordance with Article 9 (2) h and i as well as Article 9 (3) GDPR;
  • for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes in accordance with Article 89 (1) GDPR in so far as the right referred to in section a) is likely to render impossible or seriously impair the achievement of the objectives of that processing; or
  • for the establishment, exercise or defence of legal claims.

 

5. Notification obligation

If you have exercised your right of any rectification or erasure of personal data or restriction of processing vis-a-vis the controller, the controller is required to communicate any rectification, erasure or restriction of processing of personal data to each recipient to whom the personal data have been disclosed, unless this proves impossible or involves disproportionate effort.<br/> You have the right to obtain information from the controller about such recipients.

6. Right to data portability

You have the right to receive your personal data which you have provided to a controller in a structured, commonly used and machine-readable format and the right to transmit those data to another controller without hindrance from the controller to which the personal data had been provided, where

  • the processing is based on consent pursuant to Article 6 (1) a GDPR or Article 9 (2) a GDPR or on a contract pursuant to Article 6 (1) b GDPR; and
  • the processing is carried out by automated means.

 

In exercising this right to data portability you also have the right to have the personal data transmitted directly from one controller to another, where technically feasible. This may not adversely affect the rights and freedoms of others.<br/> The right to data portability does not apply to processing of personal data which is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.

7. Right to object

You have the right at any time to object, on grounds relating to your particular situation, to processing of personal data concerning you on the basis of Article 6 (1) e or f GDPR; this also applies to profiling based on those provisions.<br/> The controller will no longer process the personal data concerning you unless he can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing is necessary for the establishment, exercise or defence of legal claims.<br/> Where personal data concerning you are processed for direct marketing purposes, you have the right to object at any time to processing of personal data for such marketing purposes, which includes profiling to the extent that it is related to such direct marketing.<br/> If you object to processing for direct marketing purposes, the personal data concerning you will no longer be processed for such purposes.<br/> In the context of the use of information society services, and notwithstanding Directive 202/58/EC, you may exercise your right to object by automated means using technical specifications.

8. Right to revoke consent

You have the right to revoke your consent to the processing of your personal data. This does not affect the lawfulness of processing up to the time of revocation.

9. Automated, individual decision-making, including profiling

You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you. This does not apply if the decision

  • is necessary for entering into, or performance of, a contract between you and a data controller,
  • is authorised by Union or Member State law to which the controller is subject and which also lays down suitable measures to safeguard your rights and freedoms and legitimate interests; or
  • is based on your explicit consent.

 

These decisions may not be based on special categories of personal data referred to in Article 9 (1) unless point a or g of Article 9 (2) applies and suitable measures to safeguard your rights, freedoms and legitimate interests are in place.

 If the decision is not based on statutory provisions, the data controller implements suitable measures to safeguard your rights, freedoms and legitimate interests, at least the right to obtain human intervention on the part of the controller, to express an own point of view and to contest the decision.

10. Right to lodge a complaint with a supervisory authority

Unless an administrative or judicial remedy provides otherwise, you have the right to lodge a complaint with a supervisory authority, particularly in the Member State you live or work in, or at the place of the suspected contravention, if you believe that the processing of your personal data violates the GDPR.

The supervisory authority where the complaint is lodged informs the complainant about the status and outcome of the complaint process, including the right to an effective judicial remedy pursuant to Article 78 GDPR.

The competent supervisory authority is:

The Hessian Commissioner for Data Protection and Freedom of Information
Professor Michael Ronellenfitsch
Gustav-Stresemann-Ring 1
65189 Wiesbaden
https://datenschutz.hessen.de/

3. Data protection officer

Statutory data protection officer

We have appointed a data protection officer for our company.

Jan Alkemade

Alkemade IT-Security e.K.
Egerländer Str. 9
61239 Ober-Mörlen

Tel.: +49 6002 939593

E-mail: datenschutzbeauftragter@link-gmbh.com

4. Data collection on our website

Cookies

Some of our web pages use cookies. Cookies do not harm your computer and do not contain any viruses. Cookies help make our website more user-friendly, efficient, and secure. Cookies are small text files that are stored on your computer and saved by your browser.

Most of the cookies we use are so-called "session cookies." They are automatically deleted after your visit. Other cookies remain in your device's memory until you delete them. These cookies make it possible to recognize your browser when you next visit the site.

You can configure your browser to inform you about the use of cookies so that you can decide on a case-by-case basis whether to accept or reject a cookie. Alternatively, your browser can be configured to automatically accept cookies under certain conditions or to always reject them, or to automatically delete cookies when closing your browser. Disabling cookies may limit the functionality of this website.

Cookies which are necessary to allow electronic communications or to provide certain functions you wish to use (such as the shopping cart) are stored pursuant to Art. 6 paragraph 1, letter f of DSGVO. The website operator has a legitimate interest in the storage of cookies to ensure an optimized service provided free of technical errors. If other cookies (such as those used to analyse your surfing behaviour) are also stored, they will be treated separately in this privacy policy.

Server log files

The website provider automatically collects and stores information that your browser automatically transmits to us in "server log files". These are:

  • Browser type and browser version
  • Operating system used
  • Referrer URL
  • Host name of the accessing computer
  • Time of the server request
  • IP address

 

These data will not be combined with data from other sources.

The basis for data processing is Art. 6 (1) (f) DSGVO, which allows the processing of data to fulfill a contract or for measures preliminary to a contract.

We reserve the right to check this data or have it checked retrospectively, if we become aware of specific indications for illegal use.

Temporary storage of the IP address by the system is necessary to display website content on your terminal. The IP address of the user (visitor) is therefore stored for this purpose for the duration of the session. Log files are stored to optimise the website experience and to ensure the security of our information systems. No data is analysed for marketing purposes in this connection.

The data will be deleted as soon as it is no longer necessary to achieve the purpose for which it was collected; in the case of data collection for the purpose of providing the website, this is the case at the end of the respective session.

If the data is stored in log files, it will be deleted after seven days at the latest, but may be stored beyond this (e.g. for security reasons, such as clarification of abuse or fraud, storage for evidence purposes), in which case the IP addresses of users will be deleted or altered so that it is no longer possible to assign the calling client.

The collection of data for the provision of the website and the storage of data in log files is mandatory for the operation of the website. There is consequently no contradiction on the part of the user.

Contact form and e-mail contact

Should you send us questions via the contact form, we will collect the data entered on the form, including the contact details you provide, to answer your question and any follow-up questions. We do not share this information without your permission.

At the time the message is sent, the following data will also be stored:

  • The IP address of the user
  • Date and time of registration

 

Alternatively, contact via the provided e-mail address is possible. In this case, the user's personal data transmitted by e-mail will be stored.

The legal basis for the processing of the data is the consent of the user within the meaning of Art. 6 para. 1 lit. a GDPR. In addition, the legal basis for the processing of data transmitted in the course of sending an e-mail is Art. 6 para. 1 letter f GDPR; if the purpose of the e-mail contact is to conclude a contract, the additional legal basis for processing is Art. 6 para. 1 letter b GDPR.

The processing of the personal data from the input mask serves solely for the processing of the establishment of contact, and in the case of an establishment of contact by email, this is also the necessary legitimate interest in the processing of the data.

The other personal data processed during the sending process serve to prevent misuse of the contact form and to ensure the security of our information technology systems.

You may revoke your consent at any time. An informal email making this request is sufficient. The data processed before we receive your request may still be legally processed.

We will retain the data you provide on the contact form until you request its deletion, revoke your consent for its storage, or the purpose for its storage no longer pertains (e.g. after fulfilling your request). Any mandatory statutory provisions, especially those regarding mandatory data retention periods, remain unaffected by this provision.

The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.

Registration on this website

You can register on our website in order to access additional functions offered here. The input data will only be used for the purpose of using the respective site or service for which you have registered. The mandatory information requested during registration must be provided in full. Otherwise, we will reject your registration.

At the time the message is sent, the following data will also be stored:

  • The IP address of the user
  • Date and time of registration

 

To inform you about important changes such as those within the scope of our site or technical changes, we will use the email address specified during registration.

We will process the data provided during registration only based on your consent per Art. 6 (1)(a) DSGVO. You may revoke your consent at any time with future effect. An informal email making this request is sufficient. The data processed before we receive your request may still be legally processed.

We will continue to store the data collected during registration for as long as you remain registered on our website. Statutory retention periods remain unaffected.

The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.

Data protection for applications and in the application procedure

The controller processes the personal data of job applicants only for the purpose of processing the application procedure and in accordance with the legal requirements and may also do so electronically, in particular if an applicant sends the relevant application documents to the controller by electronic means, for example by e-mail.

If the controller concludes an employment contract with an applicant, the data transmitted shall be stored for the purpose of processing the employment relationship in compliance with the legal provisions. 6 months after notification of the decision of refusal, if no employment contract is concluded between the controller and the applicant, the application documents shall be automatically deleted, provided that there are no other legitimate interests of the controller to the contrary or the applicant’s consent to further processing exists.

By submitting the application to us, applicants agree to the processing of their data for the purposes of the application procedure in accordance with the nature and scope set out in this data protection declaration.

The processing of the applicant data takes place in order to fulfil our (pre)contractual obligations within the application procedure within the meaning of Art. 6 para. 1 letter b GDPR, the application addressed to the person responsible takes place on a voluntary basis of the applicant within the meaning of Art. 6 para. 1 letter a GDPR.

 

Transfers of personal data and collaboration with third parties

 

1. Collaboration with processors and third parties

If we disclose, transfer or grant access to your personal data to other persons and companies (processors or third parties), (e.g. transfer of data to a third party such as a payment services provider pursuant to Article 6 (1) b GDPR for the purpose of contractual performance), this is always on the basis of a legal premise such as your consent, a statutory obligation or in our legitimate interest (e.g. when we use agents, web hosting service providers etc.).

When we engage processors to process data the data is always processed on the basis of Article 28 GDPR.

2. Transfers to third countries

If we transfer data to a third country (i.e. outside the European Union (EU) or the European Economic Area (EEA)) for processing or to use third party services or if we disclose or transfer data to third parties, we do so because it is necessary to fulfil our (pre-)contractual obligations, to meet a legal obligation, because you have provided your consent or because it is in our legitimate interest to process the data. Subject to statutory or contractual permissions, we only process data or have data processed in a third country if the special requirements of Article 44 et seq. GDPR are met. Therefore, the data are only processed on the basis of special guarantees such as an official EU assessment of the adequacy of the level of data protection offered (e.g. “Privacy Shield” for the USA) or compliance with officially recognised special contractual obligations (so-called “standard contractual provisions”.

3. Incorporation of third party services and content

It is in our legitimate interest (i.e. in the interest of the analysis, optimisation and efficient operation of our website pursuant to Article 6 (1) f GDPR) to integrate third party content or services such as videos or fonts into our website (referred to in the following as “content”).

This is only possible with the third-party content provider’s knowledge of the user’s IP address, because without the IP address it would not be possible to send the content to the user’s browser. Without the IP address this content cannot be displayed. Whenever possible, we ensure that third-party content providers use only the IP address to provide the content. Some third-party content providers also use pixel tags (small blocks of code, also called web beacons) for statistical or marketing purposes. The pixel tags can evaluate information such as visitor traffic on our web pages. Other pseudonymous data can be stored in cookies on the user’s terminal and provide information about the user’s browser and operating system, referrer URLs, length of visit and other information about the use of our website and combine it with information from other sources.

4. Webhosting

We use hosting services to provide you with the following: infrastructure and platform services, processing capacity, storage space and database services, security services and technical maintenance services associated with the operation of this website.

We or our hosting services providers process inventory data, contact data, content data, contract data, usage data, meta data and communication data concerning customers, potential customers and visitors to this website. It is in our legitimate interest to process the data in order to provide an efficient and secure website pursuant to Article 6 (1) f GDPR in conjunction with Article 28 GDPR (conclusion of a contract with a processor).

5. Third party websites and data privacy

This website may contain links to third party websites. If you use one of the links to access a third-party website, please remember that we accept no responsibility or liability for third- party content or privacy policies. Please read the third-party providers’ privacy policies before transferring personal data to these websites. The operators of such linked websites are exclusively responsible for their content. When we programmed the links there was no indication that the content of the website accessed via the link failed to meet legal requirements or transgressed standards of public decency. Please inform us immediately if you access a third-party website via a link on our website which does not meet legal requirements or transgresses standards of public decency. The licence terms and term of use of the respective website operators apply.

Other information

1. SSL or TLS encryption

This site uses SSL or TLS encryption for security reasons and for the protection of the transmission of confidential content, such as the inquiries you send to us as the site operator. You can recognize an encrypted connection in your browser's address line when it changes from "http://" to "https://" and the lock icon is displayed in your browser's address bar.

If SSL or TLS encryption is activated, the data you transfer to us cannot be read by third parties.

2. Objection to marketing e-mails

We prohibit use of the data published in the mandatory legal notice and transmissions of unsolicited advertising and information materials. The website operator expressly reserves the right to take legal action in the event that unsolicited advertising information, such as spam mails, is received.

3. Changes to our privacy policy

We change our security and data protection measures if such changes are necessary for technical or legal reasons and adapt our privacy policy accordingly. Please therefore always read the most up-to-date version.

 

Privacy Policy version of  25 May 2018

We’re always there for you

Address

Bahnhofsallee 59 – 61, 35510 Butzbach, Germany

Phone

+ 49 (0) 60 33 / 9 74 04-0

Fax

+49 (0) 60 33 / 974 04-20