Our privacy policy

We are very delighted that you have shown interest in our enterprise. Data protection is of a particularly high priority for the management of the Datalog Spedition GmbH.

The use of the Internet pages of the Datalog Spedition GmbH is possible without any indication of personal data. However, if a data subject wishes to make use of special services of our company via our website, it may be necessary to process personal data. If the processing of personal data is necessary and there is no legal basis for such processing, we obtain the consent of the data subject in individual cases.

The processing of personal data, such as the name, address, e-mail address or telephone number of a data subject, is carried out in accordance with the General Data Protection Regulation (GDPR) and the country-specific data protection regulations applicable to us, such as the Federal Data Protection Act (BDSG) and the Telemedia Act (TMG).

By means of this data protection declaration, our company would like to inform the public about the type, scope and purpose of the personal data processed by us. Furthermore, data subjects are informed of their rights by means of this privacy policy.

Datalog Spedition GmbH has taken comprehensive technical, organisational and contractual measures to ensure that the personal data obtained via this website is protected as completely as possible. Nevertheless, Internet-based data transmissions can generally have security gaps, so that absolute protection cannot be guaranteed. For this reason, every data subject is free to transmit personal data to us by alternative means, for example by telephone.

Jump points:

1. Explanation of the terms used
2. Responsible for data processing
3. Data Protection Coordinator
4. Collection of general data and information
5. Contact via a website
6. Legal basis of the processing
7. Deletion and blocking of personal data
8. Rights of the data subject
9. Data protection for applications and in the application process
10. Links to websites of other providers
11. Special functions of the website
12. Changes to the privacy policy

1. explanation of the terms used

Our privacy policy should be easy to read and understand for the public as well as for our customers and business partners. To ensure this, we would like to explain the terminology used in advance.

Person concerned

Any identified or identifiable natural person whose personal data is processed is a data subject.

Personal data

Personal data is any information relating to a data subject. For example, names, identification numbers, location data, online identifiers or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

Processing

Processing is any operation carried out with or without the aid of automated procedures in connection with personal data: collecting, recording, organising, storing, changing, reading out, using, deleting or destroying. It also includes linking with other data, forwarding or making available internally or externally.

Person responsible

The controller is the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.

Restriction of processing

A marking of stored personal data with the aim of restricting its future processing.

Profiling

Any type of automated processing of personal data in order to analyse or predict certain personal aspects relating to a natural person. For example, work performance, economic situation, health, personal preferences, interests, political opinions, sexual orientation, religious affiliation, reliability, behaviour and location.

Pseudonymisation

The processing of personal data in such a way that personal data can no longer be attributed to a data subject without the use of additional information is pseudonymisation. However, this requires that the additional information is stored separately and is subject to technical and organisational measures that ensure that the personal data cannot be attributed to an identified or identifiable natural person.

Anonymisation

Anonymisation is the processing of personal data in such a way that personal data can no longer be attributed to a data subject.

Processor

A processor is a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.

Third

Third party is a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorised to process personal data.

Consent

Consent is any freely given, specific, informed and unambiguous indication of the data subject's wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her. This declaration of consent may take the form of a declaration or other confirmatory act.

2. responsible for data processing

Datalog Spedition GmbH

Peter Schäfer
Lise-Meitner-Str. 10
D-63303 Dreieich
Phone: 06103 39940
p.schaefer@datalog-transporte.de

3. data protection coordinator

Any data subject can contact our data protection coordinator directly at any time with any questions or suggestions regarding data protection:

Datalog Spedition GmbH

Peter Schäfer
Lise-Meitner-Str. 10
D-63303 Dreieich
Phone: 06103 39940
p.schaefer@datalog-transporte.de

4. collection of general data and information

The Datalog Spedition GmbH website collects a range of general data and information each time it is accessed. This general data and information is stored in the server log files.

The (1) browser types and versions used, (2) the operating system used by the accessing system, (3) the website from which an accessing system accesses our website, (4) the sub-websites which are accessed via an accessing system on our website, (5) the date and time of access to the website, (6) an Internet protocol address (IP address), (7) the Internet service provider of the accessing system and (8) other similar data and information may be recorded.

When using these general data and information, the Datalog Spedition GmbH does not draw any conclusions about the data subject. Rather, this information is required in order to (1) correctly deliver the content of our website, (2) optimise the content of our website and the advertising for it, (3) ensure the long-term functionality of our information technology systems and the technology of our website, and (4) to avert a risk in the event of attacks on our information technology systems and to provide law enforcement authorities with the information necessary for prosecution in the event of a cyber attack. Therefore, the Datalog Spedition GmbH analyses anonymously collected data and information statistically, with the aim of increasing the data protection and data security of our enterprise, and to ensure an optimal level of protection for the personal data we process. The anonymous data of the server log files are stored separately from all personal data provided by a data subject.

5. contact via a website

The website of the Datalog Spedition GmbH H contains information that enables a quick electronic contact to our enterprise, as well as direct communication with us, which also includes a general e-mail address. If a data subject contacts the data controller by e-mail or via a contact form, the personal data transmitted by the data subject is automatically stored. Such personal data transmitted to us on a voluntary basis by a data subject will be stored for the purpose of processing the enquiry, contacting the data subject or in the event of follow-up questions and deleted after the enquiry has been processed.

6. legal basis of the processing

Art. 6 I lit. a GDPR serves Datalog Spedition GmbH as the legal basis for processing operations for which we obtain consent for a specific processing purpose.

If the processing of personal data is necessary for the fulfilment of a contract with the data subject, for example for the delivery of goods or the provision of another service or consideration, the processing is based on Art. 6 I lit. b GDPR.

The same applies to the implementation of pre-contractual measures, for example in the case of enquiries about our products or services. For the fulfilment of legal obligations, such as tax obligations, the processing is based on Art. 6 I lit. c GDPR.

Processing operations for the purposes of the legitimate interests pursued by our company or by a third party are based on Art. 6 I lit. f GDPR, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject. We are permitted to carry out such processing operations in particular because they have been specifically mentioned by the European legislator. In this respect, it took the view that a legitimate interest could be assumed if the data subject is a customer of the controller (Recital 47 Sentence 2 GDPR).

7. deletion and blocking of personal data

Datalog Spedition GmbH processes and stores personal data of the data subject only for the period of time necessary to fulfil the purpose of storage. Something else applies in the event that we are obliged to store personal data or to document related processing operations due to tax or commercial law regulations. If the storage purpose no longer applies or if a storage period prescribed by law expires, the personal data will be routinely blocked or deleted in accordance with the statutory provisions, taking into account the available technology and economic appropriateness.

Rights of the data subject

a. Right to information

Any person affected by the processing of personal data has the right to receive information free of charge at any time about the personal data we have stored about them. Likewise about

• the purposes of processing
• the categories of personal data that are processed
• the recipients to whom the personal data have been or will be disclosed, in particular recipients in third countries or international organisations
• the envisaged period for which the personal data will be stored, if possible, or, if not possible, the criteria used to determine that period
• the existence of a right to lodge a complaint with a supervisory authority
• all available information on the origin of the data if it is not collected from the data subject
• the existence of automated decision-making, including profiling, referred to in Article 22(1) and (4) GDPR and, at least in those cases, meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for the data subject

Furthermore, the data subject has a right to information as to whether personal data has been transferred to a third country or to an international organisation. If this is the case, the data subject also has the right to obtain information about the appropriate safeguards in connection with the transfer.

b. Right to rectification

Every data subject has the right to demand the immediate correction of incorrect or incomplete personal data concerning them.

c. Right to restriction of processing

Every data subject has the right to request the restriction of processing if one of the following conditions is met:

• The accuracy of the personal data is contested by the data subject, for a period enabling the controller to verify the accuracy of the personal data.
• The processing is unlawful and the data subject opposes the erasure of the personal data and requests the restriction of their use instead.
• The controller no longer needs the personal data for the purposes of the processing, but they are required by the data subject for the establishment, exercise or defence of legal claims.
• The data subject has objected to the processing and it is not yet clear whether the legitimate grounds of the controller override those of the data subject.

d. Right to data portability

Every data subject has the right to receive the personal data concerning them from us in a structured, commonly used and machine-readable format. They also have the right to transmit this data to another controller without hindrance from us, provided that the processing is based on consent pursuant to Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR or on a contract pursuant to Art. 6 (1) (b) GDPR and the processing is carried out by automated means. This does not apply if the processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.

When exercising their right to data portability pursuant to Art. 20 (1) GDPR, the data subject may request that the personal data be transferred directly by us to another controller, insofar as this is technically feasible and provided that this does not adversely affect the rights and freedoms of other persons.

e. Right to object

Every data subject has the right to object, on grounds relating to his or her particular situation, at any time to processing of personal data concerning him or her which is based on point (e) or (f) of Article 6(1) GDPR. This also applies to profiling based on these provisions.

The Datalog Spedition GmbH shall no longer process the personal data in the event of the objection, unless we can demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject, or for the establishment, exercise or defence of legal claims.

If the Datalog Spedition GmbH processes personal data for direct marketing purposes, the data subject shall have the right to object at any time to processing of personal data concerning him or her for such marketing. This also applies to profiling insofar as it is associated with such direct advertising. If the data subject objects to the processing for direct marketing purposes, we will no longer process the personal data for these purposes.

The data subject is also free, in the context of the use of information society services and notwithstanding Directive 2802/58/EC, to exercise his or her right to object by automated means using technical specifications.

f. Right to withdraw consent

Every data subject has the right to withdraw consent to the processing of personal data at any time.

g. Right to erasure (right to be forgotten)

Each data subject shall have the right to obtain from the controller the erasure of personal data concerning him or her without undue delay, and the controller shall have the obligation to erase personal data without undue delay where further processing is not necessary. In particular, if one of the following reasons applies:

• The personal data was collected or otherwise processed for purposes for which it is no longer necessary.
• The data subject withdraws consent and there is no other legal basis for the processing.
• The data subject objects to the processing and there are no overriding legitimate grounds for the processing.
• The personal data was processed unlawfully.
• The deletion of personal data is necessary to fulfil a legal obligation under Union law or the law of the Member States to which the controller is subject.

If personal data has been made public by Datalog Spedition GmbH and we are obliged to delete the personal data, we will take appropriate and reasonable measures in each individual case, taking into account the available technology and the implementation costs, to inform third parties who have processed the published personal data that the deletion of this personal data has been requested.

9. data protection for applications and in the application process

We collect and process personal data from applicants for the purpose of handling the application process. Processing may also be carried out electronically. This is particularly the case if an applicant sends us the relevant application documents electronically, for example by e-mail. If we conclude an employment contract with an applicant, the transmitted data will be stored for the purpose of processing the employment relationship in compliance with the statutory provisions. If we do not conclude an employment contract with the applicant, the application documents will be automatically deleted six months after notification of the rejection decision, provided that no other legitimate interests on our part prevent deletion. Other legitimate interest in this sense is, for example, a burden of proof in proceedings under the General Equal Treatment Act (AGG).

10. links to websites of other providers

Our websites may contain links to websites of other providers that are not covered by this privacy policy. If the collection, processing or use of personal data is associated with the use of the websites of other providers, please refer to the data protection notices of the respective providers.

11 Special functions of the website

Our website offers you various functions that process personal data when you use them. Below we explain what happens to this data:

a. Google Analytics

This website uses Google Analytics, a web analytics service provided by Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA (hereinafter: Google). Google Analytics uses various techniques, including cookies, which are stored on your computer and enable the use of this website by visitors to be analysed. The information obtained by Google Analytics about your use of this website is transmitted to Google servers, which may be located in countries outside the member states of the European Union and may also be located outside the signatory states to the Agreement on the European Economic Area. By activating IP anonymisation within the Google Analytics tracking code of this website, your IP address will be anonymised by Google before transmission. This website uses a Google Analytics tracking code that has been extended by the operator gat._anonymizeIp(); to enable only anonymised collection of IP addresses. On behalf of the operator of this website, Google will use this information to analyse your visit to this website, to compile reports on website activity and to provide the website operator with other services relating to website activity and internet usage. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data. You can also prevent Google from collecting the data generated by the Google cookie and relating to your use of the website (including your IP address) and from processing this data by Google by downloading and installing the browser plug-in available at the following link:

https://tools.google.com/dlpage/gaoptout?hl=de

An opt-out cookie is set to prevent the future collection of your data when you visit this website.

You can find Google's privacy policy here:

https://policies.google.com/privacy?hl=de

b. Privacy policy for the use of Google Maps

We use the "Google Maps" component of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA, hereinafter referred to as Google, on our website. Each time the "Google Maps" component is called up, Google sets a cookie to process user settings and data when the page on which the "Google Maps" component is integrated is displayed. As a rule, this cookie is not deleted when the browser is closed, but expires after a certain period of time, unless you delete it manually beforehand. If you do not agree with this processing of your data, you have the option of deactivating the "Google Maps" service and thus preventing the transfer of data to Google. To do this, you must deactivate the Java Script function in your browser. However, we would like to point out that in this case you will not be able to use "Google Maps" or only to a limited extent. The use of "Google Maps" and the information obtained via "Google Maps" is subject to the Google Terms of Use

http://www.google.de/intl/de/policies/terms/regional.html

and the additional terms and conditions for Google Maps

https://www.google.com/intl/de_de/help/terms_maps.html

c. Google Web Fonts

This website uses Google Web Fonts from Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA (hereinafter: Google) for the standardised display of fonts. When you access a page, your browser loads the required web fonts into your browser cache in order to display texts and fonts correctly. For this purpose, the browser you are using must connect to Google's servers. This informs Google that our website has been accessed via your IP address. The use of Google Web Fonts is in the interest of a uniform and appealing presentation of our online offers. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR.

If your browser does not support web fonts, a standard font will be used by your computer. You can find more information about Google Web Fonts at https://developers.google.com/fonts/faq and in Google's privacy policy:

https://www.google.com/policies/privacy/.

12. amendment of the privacy policy

Datalog Spedition GmbH reserves the right to amend this privacy policy at any time in compliance with the applicable data protection regulations. The version of the data protection declaration available online at the time of your visit always applies to the use of our website.

Status: October 2020