Privacy Statement of ANT Applied New Technology AG
General Notes on the Use of Your Data
1. Controller, Contact
1.1. Controller Within the Meaning of the Data Protection Law
The controller responsible for processing within the meaning of article 4, section 7 of the General Data Protection Regulation (GDPR) is:
Represented by its Director Mr. Franz Eder and Mr. Marco Linde
Hinter den Kirschkaten 32
D-23560 Lübeck, Germany
Phone: +49 (0)451 5 83 80-0
Telefax: +49 (0)451 5 83 80-99
1.2. Data Protection Officer
Telefon: +49-(0)451-16 08 52 21
b) In our contract form you need to fill in the mandatory data marked with an asterisk (such as your email-address, your name, your company and your phone number) to allow for a response on your request. We need this information in order to handle your request and contact you. Fields not marked with an asterisk are optional.
c)When contact has been established (e.g. by telephone, email, fax or contact form) your data will be stored to respond to your request and to enable handling of follow-up questions, should they arise, as set out in article 6, section 1b of the GDPR. We will delete the data obtained in this context, when it is no longer required to store them; in cases where such data are bound to legal retention requirements, we shall restrict the handling of such data (see section 14).
2. Data processed by Us
2.1. Legal Basis
- you have given us your consent or
- processing is necessary for the performance of the contract we have concluded with your or
- in order to take steps at your request prior to entering into a contract or
- processing is necessary in order to protect your vital interests or the vital interests of another natural person or
- processing is necessary for the purposes of the legitimate interests pursued by us or by a third party, except where such interests are overridden by your interests or fundamental rights and freedoms which require protection of personal data (balance of interests).
2.2. What Is "Personal Data"?
b) Additionally, when you visit our website further data will be processed for technical reasons. In the first place, this concerns technical information such as the IP address allocated by your internet access provider to your computer for your internet connection or information about the internet website from where you have accessed our online offers or the type and version of the internet browser you use. Such information will also include your login data, your operating system, download errors, the duration of your visits on certain pages and all telephone numbers used to connect our customer service hotline. In particular cases, these technical information can be personal data. However, we usually use technical information only inasfar this is necessary for technical reasons to operate and protect our website from attacks and fraud as set out in article 6, section 1f of the GDPR.
2.3. What Does “Processing” Mean?
3. Data Security
4. SSL Encryption
5. Collecting Personal Data While Visiting our Website
- the IP address of the requesting device (i.e. your computer or smartphone),
- time and date of access,
- contents of the request (the particular page),
- data volume transmitted,
- website from where the access was initiated (referrer URL),
- web browser used, operating system of your computer (if any) and name of your internet access provider.
c) Such data will be collected within the framework of legitimate interests as defined in article 6, section 1f of the GDPR. We never use the data collected to draw conclusions on your personal identity. In particular, the legitimate interests we pursue include the following:
- ensuring an unobstructed connection setup of the website,
- ensuring a user-friendly usage of our website,
- investing cases of misuse or fraud,
- evaluating the system’s security and stability and
- other administrative purposes.
6. Other Functions and Offerings of our Website
The registration function for staff members and customers is not currently enabled. Therefore, we are not collecting personal data in this context.
b) For the users’ newsletter registration, we use a double opt-in procedure. This means that after you have registered, we will send you an email-address to the email-address you have specified. In this email we will ask you to confirm that you wish to receive the newsletter to be sent. In addition, we store your IP addresses used and the date and time of your registration and confirmation in each case. The purpose of this procedure is to substantiate your registration and to facilitate an inquiry into a potential misuse of your personal data. Our interest is to establish a user-friendly and safe newsletter both serving our commercial interests and meeting the users’ expectations. The legal basis thereto is article 6, section 1f of the GDPR.
c) The only mandatory information you have to fill in for sending out the newsletter is your email-address. Other information marked up in a special way may be rendered on a voluntary basis. It will be used to address you personally. After you have confirmed your registration, we will store your email-address in order to send you the chosen newsletter. The legal basis thereto is article 6, section 1a of the GDPR.
d) The newsletter is sent out to you via the newsletter dispatching platform “MailChimp” operated by the US company Rocket Science Group, LLC, 675 Ponce De Leon Ave NE #5000, Atlanta, GA 30308, USA. For the privacy statement of the dispatching provider, please see: https://mailchimp.com/legal/privacy/. Rocket Science Group LLC d/b/a MailChimp has been certified in the framework of the Privacy Shield Agreement, thus ensuring that the European data protection standards are adhered to. (https://www.privacyshield.gov/participant?id=a2zt0000000TO6hAAG&status=Active).
e) If you have registered for the newsletter only and then cancel you registration at a later stage, your personal data will be deleted.
You can withdraw your consent in receiving the newsletter and cancel the newsletter anytime. You can declare such withdrawal by clicking on the link provided in each newsletter email, by sending an email to email@example.com or by sending a message to the contact data given in the imprint
6.3. Job Offers / Unsolicited Application
7. Disclosure of Data to Third Parties and External Providers
- you have given us your express consent pursuant to article 6, subsection 1a of the GDPR,
- the relevant disclosure pursuant to article 6 section 1f of the GDPR is required to assert, exercise or defend legal claims and there is no reason to believe that you have no overriding and legitimate interest warranting non-disclosure of your data,
- we are legally obliged to disclose the data pursuant to article 6 section 1c of the GDPR or
- the disclosure is lawful and required to handle a contractual relationship with you pursuant to article 6, section 1b of the GDPR.
c) Please note that in addition to this Privacy Statement, the privacy statements and regulations of the relevant local partners and of their subcontractors may apply.
8. Where Will Your Personal Data be Stored?
b) Such a transfer to countries outside of the European Economic Area can occur, for example, when a service request is processed or support services are performed electronically.
c) When we effect such a transfer of data to Third Countries, however, we make sure that the transfer is done in accordance with this Privacy Statement. In addition, we make sure that the relevant Third Party receiver of the data guarantees an appropriate level of data protection for you and other persons concerned or that otherwise a legal permission has been provided. This is effected, by example, by concluding an agreement with the Third Country receiver based on the standard contractual clauses of the European Commission. Such standard contractual clauses offer a data protection level similar to the European General Data Protection Regulation.
9.1. What are “Cookies”?
a) Transient cookies are automatically deleted as soon as you close your web browser. This particularly includes session cookies. They store a so-called session-ID allocating several requests from your web browser to one common session. This means that your computer can be recognized when you return to our website. We use these cookies, therefore, to identify you for follow-up visits, provided that you have set up an account at our site. Otherwise, you have to log in again for each of your visits. The session cookies will be deleted when you log out or close your web browser.
b) Persistent cookies will automatically deleted after their duration has elapsed. The duration can vary depending on the individual cookie. You can delete any cookies manually in the security settings of your web browser anytime.
9.3. What can I do to Avoid Cookies?
9.3. Was kann ich gegen den Einsatz von Cookies tun?
10. Embedding Third Party Services and Contents
b) Whenever we disclose your personal data, we strive to attain the highest possible level of security. Therefore, your data will only be disclosed to or shared with carefully selected service providers and partners bound by contract to ensure that personal data are protected in accordance with the relevant laws, rules and regulations.
c) Inasfar as our service providers or partners are established in a country outside of the European Economic Area (EEA), we hereby inform you on the consequences thereof in the description of the pertaining offer.
11. Embedding of Tracking Tools and Other Third Party Contents
11.1. Google Analytics
b) Our usage of Google Analytics is based on our legitimate interests as defined in article 6, section 1f of the GDPR. We use Google Analytics to analyze the usage of our website and generally improve the site on a regular basis. The statistics gained from this service enable us to improve our offer and design it in a more interesting way for you as our user. For the exceptional cases where personal data are transferred to the US, Google has subjected itself to the EU-US Privacy Shield and, therefore, guarantees to adhere to the European data protection laws. https://www.privacyshield.gov/EU-US-Framework
c) In addition, we use Google Analytics for a cross-devices analysis of the flow of visitors effected through a particular user ID. You can disable the cross-devices analysis of your usage in your customer account under “My Data”, “Personal Data”.
d) We use Google Analytics with the „_anonymizeIp()“ extension. This extension provides that IP addresses are truncated prior to their processing. This makes sure that they cannot be linked to a particular individual. Inasfar as the data collected provide a personal reference, it will immediately excluded, and thus, the personal data are deleted right away.
f) The IP address transferred by your web browser within the framework of Google Analytics will not be combined with other data of Google.
g) You can decline to store cookies by changing the relevant settings of your web browser. However, please note that in this case you will not be able to make full use of some of the features offered on this website. In addition, you may avoid any collection of the data created by the cookie that relate to your usage of the website (including your IP address) for Google and their processing through Google, by downloading and installing the web browser plug-in available under the following link: https://tools.google.com/dlpage/gaoptout?hl=en.
h) Notably with mobile terminal device it is possible that the plug-in will not work. Additionally you may prevent the data collection by Google by clicking the following link:
i) Additional information on the usage of data for advertising purposes by Google, on settings and redress options, are available on Google’s web pages:
11.2. Google Web Fonts
b) Our usage of Google Analytics is based on our legitimate interests as defined in article 6, section 1f of the GDPR, in particular on the consistent and appealing presentations of our online offers. c) Whenever a web page is accessed, your web browser loads the required Web Fonts into its cache in order to correctly display texts and fonts. To this purpose your web browser must establish a connection to the servers of Google. Through this, Google becomes aware that our website has been accessed through your IP address. If your web browser does not support Web Fonts, it uses a standard font installed on your computer instead. d) To learn more about Google Web Fonts, please see https://developers.google.com/fonts/faq and the Privacy Statement of Google under: https://policies.google.com/privacy?hl=en.
11.3. Embedding Google Maps
b) By visiting your website, Google becomes aware of the fact that you have accessed the pertaining sub page of our website. In addition, the data described in section 5 of this Privacy Statement are transferred. This applies regardless of whether Google provides a user account through which you are logged in or if no user account exists. When you are logged in at Google, your data will be directly allocated to your account. If you do not wish such allocation to your Google profile, you need to log out before enabling the button. Google stores your data as usage profiles to use them for marketing and marketing research purposes und/or to design its website as needed. The pertaining analysis particularly aims at presenting needs-based advertising (even for users not logged in) and to inform other users of the social network on your activities on our website. You are entitled to object against the creation of these user profiles; to avail of this right, you need to address Google.
c) For additional information on the purposes and extent of the data collection and processing by the provider of the plug-in please view the provider’s privacy statements. There, you will also find information on your relevant rights and option settings to protect your privacy: https://policies.google.com/privacy?hl=de&gl=en. Google also processes personal data in the US and has subjected to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.
11.4. Shariff für Social Sharing (Teilen von Inhalten auf Facebook, Twitter und Google+)
Die üblichen Social-Media-Buttons übertragen die User-Daten bei jedem Seitenaufruf an Facebook & Co. und geben den sozialen Netzwerken genaue Auskunft über Ihr Surfverhalten (User Tracking). Dazu müssen Sie weder eingeloggt noch Mitglied des Netzwerks sein. Dagegen stellt ein Shariff-Button den direkten Kontakt zwischen Social Network und Besucher erst dann her, wenn letzterer aktiv auf den Share-Button klickt.
Damit verhindert Shariff, dass Sie auf jeder besuchten Seite eine digitale Spur hinterlassen, und verbessert den Datenschutz. Dann können Sie nach Gutdünken liken, +1en oder tweeten – mehr Informationen erhält das soziale Netzwerk nicht.
Die Anzeige der “Likes” kommt dank Shariff vom Betreiber der Seite mit den Knöpfen. Weil Shariff vom Webmaster eingebunden wird, müssen Sie als Besucher nichts weiter tun. Weitere Informationen finden sich bei c’t.
Wir haben auf unserer Website die Social-Media-Buttons folgender Unternehmen eingebunden: Facebook, Twitter, Google+
12. Your Rights in Your Data
- pursuant to article 15 of the GDPR you have the right to obtain information on your data that we process. In particular, you can demand information on the purposes of the processing, the categories of personal data concerned, the recipients or categories of recipient to whom the personal data have been or will be disclosed, the envisaged period for which the personal data will be stored, the existence of the right to request rectification or erasure of personal data, or restriction of processing of personal data or to object to such processing, the existence of your right to lodge a complaint, where the personal data are not collected from us, any available information as to their source and the existence of automated decision-making, including profiling and meaningful information about its particulars.
- gPursuant to article 16 of the GDPR you have the right to demand immediate rectification or completion of your inaccurate or incomplete data stored by us.
- Pursuant to article 17 of the GDPR, you have the right to demand erasure of your personal data stored by us, unless the procession thereof is required to exercise the right of speech and information, to comply with a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims.
- Pursuant to article 18 of the GDPR you have the right to demand that the processing of your personal data be restricted, in case the accuracy of the personal data is contested by you, the processing is unlawful and you oppose the erasure thereof and if they are not required by us anymore, while they are required by you for the establishment, exercise or defense of legal claims or in cases where you have objected to processing pursuant to article 21(1) of the GDPR.
- Pursuant to article 20 of the GDPR you have the right to data portability, i.e. you have the right to receive your personal data which you have provided to us, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller, inasfar as the processing is based on your consent or on a contract with us and the processing was carried out by automated means. In cases of the transmission of data to a different controller, however, you can only effect such transmission inasfar as this is technically feasible.
- Pursuant to article 7 section 3 of the GDPR you can withdraw you consent you have given to us anytime. As a consequence, we are no longer entitled to continue our processing of data that was based on such consent, and
- Pursuant to article 77 of the GDPR you have the right to lodge a complaint with a supervisory authority. As a rule you can address the supervisory authority competent for your habitual residence, your place of work or for our headquarters.
13. Right to Object
c) As a matter of course, you may object to a processing of your personal data for advertising or data analysis purposes anytime. You can use the contact information mentioned above in section 1.1 to inform us about your advertisement related objection.
d) To exercise your right to withdrawal or object, it suffices to send an email to the person set out in section 1.1.
14. Deletion and Retention Periods of Your Data
b) Data that we need to store due to legal, statutory or contractual retention obligations (e.g. for tax reasons) will be blocked instead of being deleted in order to prevent any usage for other purposes. This includes, e.g., the retention for a period of six years in accordance with section 257 subsection 1 of the German Commercial Code (for trading books, inventories, opening balances, annual accounts, commercial papers, documents relevant for taxation purposes etc.) or for a period of 10 years in accordance with section 147 subsection 1 of the German Tax Code (books, recordings, status reports, accounting documents, commercial and business correspondence, documents relevant for taxation etc.).
15. Changes to This Privacy Statement
b) Legislative amendments or adaptions of the processing of data may necessitate an update of this privacy information. We, therefore, recommend that you keep yourself informed on alterations of this web page in regular intervals. Inasfar as such amendments concerns your consents or the terms and conditions of a concluded contract, they will not be implemented without your consent. To this purpose, we will separately contact you.