Transparent information in accordance with the GDPR

1. Officer in charge and data protection officer

The person responsible within the meaning of the General Data Protection Regulation (GDPR) is:

Company: Kurth Electronic GmbH
Street: Muehleweg 11
Postal code/City: 72800 Eningen
Tel.: +49 7121 9755 0
e-mail: info@kurthelectronic.de

As data protection officer has been appointed: Mr Kevin Anker, e-mail: k.anker@kurthelectronic.de

 

2. Which sources are used to collect personal data?

We process personal data that we receive from our customers directly or via our homepage within the framework of our business relationship. In addition, we process personal data that we have received from other companies, e.g. for the execution of orders, for the fulfilment of contracts or on the basis of a consent given by you.

On the other hand, we process personal data that we have legitimately obtained and may process from publicly accessible sources (e.g. trade and association registers, press, media, Internet).

Personal data relevant to us may be:

Customer contact information

For the processing of personal data required for the performance of a contract with you, the contract pursuant to Article 6 paragraph 1 letter b) GDPR is the legal basis. Article 6 paragraph 1 lit. b) GDPR also applies to processing operations that are necessary for the implementation of pre-contractual measures, for example in cases of enquiries about our products or services.

The customer’s contact data provided (title, name, surname, company, address, VAT ID, e-mail address, telephone number) as well as the data required for the respective service provision are processed.

Credit assessment

Kurth Electronic GmbH reserves the right to obtain credit information in individual cases for the purpose of concluding and processing the contract.

 

3. For what purposes will your data be processed and on what legal basis?

We process the aforementioned personal data in accordance with the provisions of the EU General Data Protection Regulation (GDPR) and the Federal Data Protection Act (BDSG-neu):

In the processing of personal data for which we have obtained the consent of the data subject, Art. 6 para. 1 lit. a) of the GDPR serves as the legal basis.

In the processing of personal data required for the performance of a contract to which the data subject is a party, Article 6(1)(b) of the GDPR serves as the legal basis. This regulation also covers processing operations that are necessary to carry out pre-contractual measures.

Insofar as the processing of personal data is necessary to fulfil a legal obligation to which our company is subject, Art. 6 para. 1, sentence 1 c) GDPR serves as the legal basis.

If processing is necessary to safeguard a legitimate interest of our company or a third party and if the interests, fundamental rights and freedoms of the data subject do not outweigh the former interest, Art. 6 para. 1 sentence 1 f) GDPR serves as the legal basis for processing. The legitimate interest of our company lies in the performance of our business activities.

Your data will be processed by us for the following purposes:

  • To receive the newsletter – if you have signed up for it on our website
  • Contacting you by e-mail, in writing or by telephone for offers that might be of interest to you
  • Establishing and/or maintaining a business relationship

 

4. Disclosure of data to third parties

Within our company, only those persons and departments receive your personal data that they need to fulfil our contractual and legal obligations.

We transfer data to third parties if we need it to fulfil a contractual obligation.

There will be no transmission to third parties beyond the purposes mentioned under point 3.

In addition, we transmit data to third parties if there is a legal obligation to do so. This is the case if state institutions (e.g. authorities and offices) request information in writing, a court order is available or a legal basis allows the disclosure.

If we make advance payments, e.g. when purchasing on account, we reserve the right to obtain identity and credit information from specialized service providers (credit agencies) in order to safeguard our legitimate interests.

 

5. Disclosure of data to third countries

Personal data will not be transferred to so-called third countries outside the EU/EEA area.

 

6. Storage period of data / deletion periods

We process and store your personal data as long as it is necessary for the fulfilment of our contractual obligations as well as for all other purposes mentioned under point 3 or as provided for by law.

 

7. Data protection rights of the data subject

If you have any questions about your personal data, you can contact our data protection officer, Mr. Kevin Anker, k.anker@kurthelectronic.de, in writing at any time.

You have the following rights under GDPR:

  • You can request information about what data is stored about you.
  • You may request the correction, deletion and restriction of the processing (blocking) of your personal data as long as this is legally permissible and possible within the framework of an existing contractual relationship.
  • You have the right of appeal to a supervisory authority.
    The supervisory authority responsible for Kurth Electronic GmbH is:
    The State Commissioner for Data Protection and Freedom of Information Baden-Württemberg, Königstraße 10a, 70173 Stuttgart, e-mail: poststelle@lfdi.bwl.de
  • You have the right to transferability of the data that you have provided to us on the basis of a consent or a contract (data transferability).
  • If you have given us your consent to data processing, you can revoke it at any time in the same way you have given it. The revocation of consent shall not affect the legality of the processing carried out on the basis of the consent until revocation.

To exercise your rights, simply send a letter by post to Kurth Electronic GmbH, Muehleweg 11, 72800 Eningen or by e-mail to info@kurthelectronic.de.

 

8. Legal existence of automated decision making (including profiling)

As a responsible company, we do without automatic decision-making or profiling in our business relationships.

 

9. Updating of the data protection statement

We adapt the data protection statement to changed functionalities or changed legal situations. We therefore recommend that you read the data protection notice on our website at regular intervals. If your consent is required or components of the data protection notice contain provisions of the contractual relationship with you, the changes will only be made with your consent.

 

Updated: June 2018