Privacy Policy

Your privacy is important to us. The principles relating to processing of personal data as set out in the General Data Protection Regulation (GDPR) – transparency, lawfulness, purpose limitation, accuracy and data minimisation – are also the standards we set for ourselves when handling your data. We are strongly committed to living up to the trust you place in us in this respect as well. That is why we protect your personal data against unauthorised access among other things.

The degree to which we collect, process and use your data depends on the form in which you avail yourself of our offerings. By visiting our website, you agree that we may collect, process, use and store your personal data to the extent specified below. We treat these data as confidential as a matter of course. We continuously revise and amend our Privacy Policy. This version was revised in May 2018.

The controller is:
Schäffer Maschinenfabrik Gesellschaft mit beschränkter Haftung (GmbH)
Auf den Thränen
D-59597 Erwitte
Phone: +49 (0) 2943 9709-0
Fax: +49 (0) 2943 9709-50
Managing directors: Jürgen Jachalke, Siegfried Schäffer and Rüdiger Lohoff

Register No. HRB 5299 Paderborn Local Court
VAT ID: DE 811367639

I. General information

1. Personal data

Personal data is information relating to an identified or identifiable natural person. This includes information about your identity such as your name, your e-mail address, or your postal address. Information that cannot be linked with your identity (such as statistical information used to count the number of website users) is not considered personal information, however.

You can generally use our online offering without disclosing your identity and without providing any personal data. We will then only collect general information regarding your visit to our website. However, personal data are collected from you for some of the services offered. As a basic principle, in such a case we will only process these data for the purpose of using this website, including without limitation to provide the required information. When collecting personal data, only the data that are absolutely necessary must be provided. Further information may be provided, but this is voluntary information. We indicate in each instance whether fields are mandatory or optional. We inform you about the specific details in the relevant section of our Privacy Policy.

There is no automated decision-making based on your personal data in relation to usage of our website.

2. Collection, processing and use of personal data when visiting our website

As the website operator, based on our legitimate interest (see Article 6(1)(f) of the GDPR), we collect data regarding access to this website and store such data as server log files on the website server. The following data are logged in this way:

  • Website visited
  • Time of access
  • Volume of data sent (in bytes)
  • Source/reference from which you accessed the site
  • Browser used
  • Operating system used
  • IP address used

The server log files are automatically erased on a regular basis. Data are stored for security reasons, e.g. to facilitate investigation of misuse or malfunctions. If data must be collected for evidentiary purposes, they are excluded from erasure until matters have been finally resolved. These data are not merged with other data sources.
Your personal data are transmitted in encrypted form over the Internet. We use SSL (Secure Socket Layer) encryption for the data transmission.

3. Legal basis of data processing

Insofar as we obtain your consent to processing of your personal data, Article 6(1)(a) of the GDPR constitutes the legal basis for such data processing.

Insofar as we process your personal data because processing is necessary for the performance of a contract or under a quasi-contractual relationship with you, Article 6(1)(b) of the GDPR constitutes the legal basis for such data processing.

Insofar as we process your personal data because processing is necessary for compliance with a legal obligation, the lawfulness of data processing is based on Article 6(1)(c) of the GDPR.

Furthermore, Article 6(1)(f) of the GDPR may constitute the legal basis for data processing, if processing of your personal data is necessary for the purposes of the legitimate interests pursued by our company or by a third party, except where such interests are overridden by your interests or your fundamental rights and freedoms which require protection of personal data.

Throughout this Privacy Policy, we refer to the legal basis on which we process your personal data.

4. Use of cookies

We use cookies so that we can present you with as individualised an offering as possible. You are given the option of rejecting cookies when you visit our website. We recommend that you allow the use of cookies so that you can enjoy all of the features of our website and offering.

Cookies are small text files placed by your browser on your end device. The cookies are stored until you close your browser and may automatically store certain information again even if you have closed our website if you happen to visit our website again, for example. This applies to the contents of your shopping cart, for instance.

If you log into our webshop using your personal login data, you have the option of enabling the “stay logged in” feature. In this case, a cookie is placed on your computer which then identifies your computer again the next time you visit our site. If you log off again, then this cookie is deleted.

a) This website uses the following types of cookies, with their scope and function explained below:

  • Transient cookies (see b)
  • Persistent cookies (c).

b) Transient cookies are automatically deleted when you close the browser. They include, without being limited to, session cookies. Session cookies store what is known as a session ID, which is used to assign various requests from your browser to the one session. This allows your computer to be remembered when you return to our website. Session cookies are deleted when you log out or close the browser.

c) Persistent cookies are automatically deleted after a specified period, which may differ depending on the cookie. You can delete the cookies in the security settings of your browser at any time.

d) You can set-up your browser according to your preferences; for instance, you can refuse to accept third-party cookies or all cookies. Please be aware that in that case you may not be able to use all features of this site.

e) We use cookies so that we can identify you when you visit us again if you have an account with us. Otherwise, you have to log in again each time you visit.

We also use cookies in the customer’s interest so that we can design our website to be as effective, smooth and user-friendly as possible. In the interests of the fastest and easiest possible use of our website and service offerings, we have therefore decided to also use cookies. The legal basis is Article 6(1)(1)(f) of the GDPR.

5. Rights of persons concerned

We are strongly committed to explaining how we process personal data and to informing you about your rights as transparently as possible. If you would like more detailed information or wish to exercise your rights, you may contact us at any time so that we can address your concerns.

You have extensive rights with respect to the processing of your personal data. First of all, you have an extensive right to information and under certain circumstances may demand correction and/or deletion or blocking of your personal data. You may also obtain restriction of processing and you have a right to object. You also have a right to data portability with a view to personal data that you have transmitted to us.

If you wish to assert any of your rights and/or would like more detailed information concerning these, please contact our data protection officer.

You may at any time revoke your consent with future effect. Withdrawal of consent does not affect the lawfulness of any processing performed on the basis of such consent given up until the withdrawal thereof. Our data protection officer is also your contact in this regard.

Insofar as the processing of your personal data is not based on consent given by you but on another legal basis, you may object to the data processing. Your objection will lead to a review and, if necessary, to termination of the data processing. You will be informed of the outcome of the review and – if the data processing is to be continued after all – you will receive further information from us on why the data processing is admissible.

We would like to point out here that we may still store personal data after a business relationship has ended. We can only erase personal data if no statutory retention periods prevent this. We can only meet any requests for erasure once the retention periods have expired. If you would like data to be erased during a retention period, we will block the personal data from use during the retention period and thereby not use it further.

6. Protection of minors

Children and young people under 18 years of age should not transfer any personal data to us without permission from their parents or guardians.

7. Links

You will find links to offerings of other operators on our website. These links are indicated. We have no influence over the content of linked sites. Please check out any linked site to find out the data provisions which apply there if you wish.

8. Contact

We can be contacted in various ways, including via the contact form on our website.

If you wish to use the contact form on our website, we record the personal data you provide in the contact form for this, especially your first name, surname and email address. We also store the IP address and date and time of the request. We only process the data transferred via the contact form so that we can respond to your query or concern.

You can decide which information you transfer to us via the contact form. Your consent constitutes the legal basis for processing of your data pursuant to Article 6(1)(a) of the GDPR.

After we handle the matter, the data are initially stored in case there are any follow-up queries. A deletion of the data can be requested at any time. Otherwise, the data are erased after the matter has been fully dealt with; statutory retention obligations remain unaffected.

II. Integration of third-party providers

1. Integration of YouTube videos

Our website includes YouTube videos stored on http://www.youtube.com that can be played directly from our website. These are all embedded in “enhanced privacy mode”, i.e. no data about you as a user are transferred to YouTube if you do not play the videos. The data referred to in paragraph 2 are only transferred if you play the videos. We have no influence on this data transfer.

When you visit the website, YouTube is informed that you have accessed the corresponding page on our website. The data specified under Section I of this Policy are also transferred. This takes place regardless of whether or not YouTube provides a user account via which you are logged in or there is no user account. If you are logged into Google, these data are directly assigned to your account. If you do not wish to have these data assigned to your YouTube profile, you will need to log out before activating the button. YouTube stores your data as usage profiles and uses these for the purposes of advertising, market research and/or needs-based design of its website. In particular, such analysis is conducted (even for users that are not logged in) in order to provide appropriate advertising and inform other users of the social network about your activities on our website. You have the right to object to the formation of these user profiles; please contact YouTube if you wish to exercise this.

For more information on the purpose and scope of the data collection and the processing conducted by YouTube, please refer to the Privacy Policy. Further information regarding your rights and configuration options for protecting your privacy is also available there: https://www.google.de/intl/de/policies/privacy. Google also processes your personal data in the USA and complies with the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.

2. Use of Google Maps

We use the “Google Maps” component of Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043 USA, “Google”, on our site.
Each time Google Maps is called, Google sets a cookie to process user settings and data when viewing the page that has the Google Maps component integrated. This cookie is usually not deleted by closing the browser, but will expire after a certain amount of time unless it is manually deleted by you.

If you do not consent to the processing of your data, you may disable the “Google Maps” service and prevent the transmission of data to Google in this way. For this, the Java Script function must be deactivated in your browser. However, please note that in this case you will not be able to use “Google Maps” or only to a limited extent.

Use of “Google Maps” and information obtained through “Google Maps” is subject to the Google Terms of Use
http://www.google.de/intl/de/policies/terms/regional.html
and the additional terms and conditions for “Google Maps”
https://www.google.com/intl/de_de/help/terms_maps.html.

III. Data protection contact

For questions relating to the collection, processing or use of your personal data not covered by this Privacy Policy and to rectify or erase your data or withdraw any consent given, please contact our company data protection officer:

Schäffer Maschinenfabrik Gesellschaft mit beschränkter Haftung (GmbH)
FAO Dirk Elberg
Auf den Thränen
D-59597 Erwitte
Phone.: +49 (0) 2943 9709-0
Fax: +49 (0) 2943 9709-50

Register No. HRB 5299 Paderborn Local Court
VAT ID: DE 811367639

IV. Right to lodge a complaint

You have the right to report suspected breaches of data protection provisions and to lodge a complaint regarding these with the relevant supervisory authority. Your complaint can be directed to:

Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen
(North Rhine-Westphalia Commissioner for Data Protection and Freedom of Information)
Postfach 20 04 44
D-40102 Düsseldorf
Phone: +49 (0) 211/38424-0
Fax: +49 (0) 211/38424-10
Email: poststelle@ldi.nrw.de

You may also contact the relevant authority in your member state, especially if you are not a German citizen, or:

Bundesbeauftragte für den Datenschutz und die Informationsfreiheit
(Federal Commissioner for Data Protection and Freedom of Information)
Husarenstr. 30
D-53117 Bonn
Phone: +49 (0)228 997799-0
Fax: +49 (0)228 997799-5550
Email: redaktion@bfdi.bund.de