1. Scope of application
This data protection declaration applies to the Internet presence of the ABBS Group (https://www.abbs.group) and to the personal data collected via these Internet pages. For Internet pages of other providers, which are referred to e.g. via links, the data protection information and declarations of those providers apply. Furthermore, this data protection declaration for information on the processing of personal data in the context of the provision of services applies to the following companies:
ABBS Deutschland GmbH Wülfrather Str. 37 | 42553 Velbert (DEU) A.B.B.S. N.V.Grauwmeer | 3001 Leuven (BE) ABBS Nederland B.V.Havenweg 17A | 5735 SH Aarle-Rixtel (NL) ABBS Polska Sp. z o.o. Ul. Żwirki i Wigury 65/302 | 43-190 Mikołów (PL) ABBS-Hungária Zrt. Illatos u. 9. | 1097 Budapest (HRV)
Personal data means any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person (cf. Art. 4 DSGVO).
2. Responsible body
The responsible body for data processing on this website is:
ABBS Deutschland GmbH
Wülfrather Str. 37
The responsible bodies for data processing in the context of service provision are the respective companies of the ABBS Group that provide services for third parties or otherwise process personal data.
3. Data protection officer
We have appointed an external data protection officer for our companies.
Pfeil Concepts GmbH Daniel Jahn Old market garden 2 04425 Taucha
4. Information on the processing of personal data on our website
4.1 Web Hosting:
The web server for the operation of our website is technically operated and maintained by Hetzner Online GmbH. Their contact details are:
Hetzner Online GmbH Industriestr. 25 91710 Gunzenhausen Germany We have concluded a contract with Hetzner Online GmbH for commissioned processing pursuant to Article 28 (3) DSGVO.
4.2 SSL/TLS Encryption
For security reasons and to protect the transmission of confidential content that you send to us as the site operator, this site uses SSL or TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line. If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
4.3 Processing of personal data in the context of website use?
When you visit our website, selected personal data is automatically collected by our IT systems. This is primarily technical data (e.g. information about your Internet browser, operating system or the time of the page call). This data is collected to ensure error-free provision of the website. Furthermore, this data may be used to analyze your user behavior and to improve our services and products. Within the scope of order processing, this data is transmitted to Hetzner Online GmbH.
Most of the cookies we use are so-called "session cookies". They are automatically deleted after the end of your visit. Other cookies remain stored on your terminal device until you delete them. These cookies allow us to recognize your browser on your next visit.
You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when closing the browser. If cookies are deactivated, the functionality of this website may be limited.
Cookies that are required to carry out the electronic communication process or to provide certain functions that you have requested (e.g. shopping cart function) are stored on the basis of Art. 6 (1) lit. f DSGVO. The website operator has a legitimate interest in storing cookies for the technically error-free and optimized provision of its services.
Server log files
The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:
- browser type and browser version
- Operating system used
- referrer URL
- Host name of the accessing computer
- Time of the server request
- IP address
This data is not merged with other data sources.
The collection of this data is based on Art. 6 para. 1 lit. f DSGVO. The website operator has a legitimate interest in the technically error-free presentation and optimization of its website - for this purpose, the server log files must be collected. After seven days at the latest, the data is anonymized by shortening the IP address at domain level, so that it is no longer possible to establish a link to the individual user.
Google Web Fonts
This site uses so-called web fonts provided by Google for the uniform display of fonts. The Google Fonts are installed locally. A connection to Google servers does not take place.
This site uses the map service Google Maps via an API. The provider is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.
To use the functions of Google Maps, it is necessary to store your IP address. This information is usually transferred to a Google server in the USA and stored there. The provider of this site has no influence on this data transmission.
The use of Google Maps is in the interest of an appealing presentation of our online offers and an easy location of the places indicated by us on the website. This represents a legitimate interest within the meaning of Art. 6 para. 1 lit. f DSGVO.
5. Information on the processing of personal data in the context of our service provision.
5.1 Processing purposes
Processing of orders, information about order and delivery data, implementation of logistics services, implementation of orders and projects, recording of contract and contact data for order processing or order initiation, accounting, bookkeeping, dunning, organization and implementation of purchasing and procurement, sales and marketing, maintenance of customer, supplier and prospect relationships.
5.2 Legal basis of our processing activities
- Fulfillment of contractual and pre-contractual measures (Article 6 para. 1 p.1 lit. b DSGVO),
- Legal obligations (Article 6 para.1 lit. c DSGVO) or public interest (Article 6 para. 1 lit. e DSGVO),
- Consent (Article 6 para.1 p.1 lit. a DSGVO in conjunction with Article 7 para. 1-4 DSGVO),
- To protect our legitimate interest (Article 6 para. 1 lit. f DSGVO).
5.3 Categories of data subjects
Interested parties, customers and/or employees of customers, suppliers, interested parties, partners, intermediaries, ext. service providers and freelancers.
5.4 Categories of personal data
We process personal data that we receive from you in your capacity as representative or authorized agent of the legal entity (prospective customer, customer, supplier, ext. service provider, partner, freelancer, employee of the principal, intermediary). In detail:
Contact data (name, title, first name, telephone, fax, cell phone, Internet address, e-mail, position, company, company address, number of employees if applicable, industry, type of customer, telephone (company), fax (company), contact history and correspondence, data for offers and business initiation)
Billing data (order data, payment data, account information, bank, IBAN, BIC, name of account holder, data for fulfillment of contractual obligations
Personal information from orders, purchase orders and contracts (address, contact data, content of contracts)
5.5 Categories of recipients
Internal bodies involved in the execution of the respective business processes such as purchasing, sales, marketing, distribution, administration, order processing, accounting and bookkeeping. Public bodies such as social security institutions and tax authorities in the case of overriding legal requirements.
External contractors (processors within the meaning of Art. 4 in conjunction with Art. Art. 28 DSGVO. to fulfill the above-mentioned purposes).
In addition, we will only pass on your personal data if you have given us your express consent to do so in accordance with Art. 6 para. 1 lit. a DSGVO, or if there is a legal obligation to do so in accordance with Art. 6 para. 1 lit. c DSGVO, e.g. in the context of criminal prosecution or the disclosure is necessary pursuant to Art. 6 (1) (f) DSGVO for the purpose of asserting or defending legal claims or exercising rights, and it cannot be assumed that the disclosure is contrary to an overriding interest of the data subject that merits protection.
5.6 Retention/Deletion Periods
When the respective statutory retention periods have expired, we delete the respective personal data as long as the personal data is not required for the fulfillment or initiation of a contract or we no longer have a legitimate interest in storing it.
5.7 Storage period of personal data
10 years retention period according to § 14 UStG. 10 years retention period according to § 147 AO for tax relevant documents. 10 years retention period according to § 257 para. 1 no. 1 + 4 HGB. Applies to commercial books, inventories, opening balance sheets, (consolidated) annual financial statements, (consolidated) management reports, accounting vouchers.
For our foreign companies as per item 1, the respective country-specific retention or archiving and deletion periods apply.
5.8 Data transfer to third countries outside the EU
A transfer to third countries does not take place and is not planned. Nevertheless, when using electronic communication via the Internet, it can never be ruled out that data may be forwarded via or to a third country.
6. Processing of personal data in the context of job applications
We offer you the opportunity to apply for a job with us (e.g. by e-mail or post).
We process the data you have sent us in connection with your application in order to check your suitability for the job (or, if applicable, other open positions in our companies) and to carry out the application process. This concerns data such as: Contact details, communication data, personal data, application documents and availability.
The processing of data required in connection with the decision on the initiation of an employee relationship is permitted. The legal basis is Art. 6 para.1 lit. b) DSGVO (General Data Protection Regulation) in conjunction with applicable national employment law regulations.
Should the data be required for legal prosecution after the conclusion of the application process, data processing may be carried out to safeguard legitimate interests pursuant to Art. 6 (1) f) DSGVO. Our interest then consists in the assertion or defense of claims.
In principle, only those persons/offices within the company will have access to your data that require it for the proper conduct of the application process. Our employees are bound to confidentiality and trained on the subject of data protection. Your data will not be passed on to third parties.
If we are unable to make you a job offer, you reject a job offer, withdraw your application, revoke your consent to data processing or request us to delete the data, the data you have submitted, including any remaining physical application documents, will be stored or retained (retention period) for a maximum of 6 months after completion of the application process in order to be able to trace the details of the application process in the event of discrepancies. The legal basis for this is Art. 6 para.1 lit. f) DSGVO.
In the event that you have consented to the inclusion of your application in our applicant pool for the purpose of filling subsequent vacancies (we will obtain your separate consent for this), the data will be deleted after a maximum of 12 months. The legal basis for this processing is Art. 6 para.1 lit. a) DSGVO (consent). Your consent can be revoked at any time.
If you are awarded a position during the application process, your data will be transferred from the applicant data system to our HR information system.
The data will be processed on our in-house IT systems. Suitable technical and organizational measures protect the data against unauthorized access or data loss.
After the retention period has expired, the data is deleted unless there is a legal obligation to retain it or another legal reason for its continued storage. If it is apparent that it will be necessary to retain your data after the retention period has expired (e.g. due to an impending or pending legal dispute), the data will not be deleted until it has become irrelevant. Other statutory retention obligations remain unaffected.
7. Data subject rights
You have the right to receive information free of charge at any time about the origin, recipient and purpose of your stored personal data. You also have a right to demand the correction, blocking, deletion and, under certain circumstances, the restriction of the processing of your personal data. For this purpose, as well as for further questions on the subject of data protection, you can contact the responsible office or our external data protection officer at any time. In addition, you have the right to lodge a complaint with the competent supervisory authority.
Withdrawal of your consent to data processing (Art. 7 DSGVO).
Many data processing operations are only possible with your express consent. You can revoke consent you have already given at any time. For this purpose, an informal communication by e-mail to us is sufficient. The legality of the data processing carried out until the revocation remains unaffected by the revocation.
Right to object to data collection in special cases and to direct advertising (Art. 21 DSGVO).
Right of complaint to the competent supervisory authority (Art. 13 DSGVO).
In the event of violations of the DSGVO, data subjects have the right to lodge a complaint with a supervisory authority, in particular in the Member State of their habitual residence, their place of work or the place of the alleged violation. The right of appeal is without prejudice to any other administrative or judicial remedy.
Right to data portability (Art. 20 DSGVO).
You have the right to have data that we process automatically on the basis of your consent or in performance of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another responsible party, this will only be done insofar as it is technically feasible.
Information, blocking, deletion and correction (Art. 15,16,17 DSGVO).
Within the framework of the applicable legal provisions, you have the right at any time to free information about your stored personal data, its origin and recipient and the purpose of data processing and, if necessary, a right to correction, blocking or deletion of this data. For this purpose, as well as for further questions on the subject of personal data, you can contact us at any time at the address given in the imprint.
Right to restriction of processing (Art. 18 DSGVO).
You have the right to request the restriction of the processing of your personal data. To do this, you can contact us at any time at the address given in the imprint. The right to restriction of processing exists in the following cases:
If you dispute the accuracy of your personal data stored by us, we usually need time to verify this. For the duration of the review, you have the right to request the restriction of the processing of your personal data.
If the processing of your personal data has happened / is happening unlawfully, you can request the restriction of data processing instead of deletion.
If we no longer need your personal data, but you need it to exercise, defend or assert legal claims, you have the right to request the restriction of the processing of your personal data instead of erasure.
If you have lodged an objection pursuant to Art. 21 (1) DSGVO, a balancing of your and our interests must be carried out. As long as it has not yet been determined whose interests prevail, you have the right to request the restriction of the processing of your personal data.
If you have restricted the processing of your personal data, this data may - apart from being stored - only be processed with your consent or for the assertion, exercise or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of an important public interest of the European Union or a Member State.
Tested and confirmed standards for your safety!