Privacy Policy
Welcome to our website. We take the protection of your personal data very
seriously. We process your data in accordance with applicable personal data
protection legislation, in particular the GDPR and our country-specific
implementation laws, which provide comprehensive information about the
processing of your personal data and your rights.
Personal data is any information that makes it possible to identify a natural person.
This includes, in particular, your name, date of birth, address, telephone number,
email address and IP address. Anonymous data means, that no personal reference
to the individual/user can be made.
Responsible body and data protection officer
Bechtle AG
Bechtle Platz 1
74172 Neckarsulm (Germany)
E-Mail:
kontakt@bechtle.com
Tel.:
+49 07132 - 981-0
Contact to the Data Protection officer:
privacy@bechtle.com
Your rights as a data subject
We would first like to notify you of your rights as a data subject. These rights are set
out in Articles 15 - 22 GDPR, and include:
- The right of access (Art. 15 GDPR),
- The right to rectification (Art. 16 GDPR),
- The right to data portability (Art. 20 GDPR),
- The right to object to data processing (Art. 21 GDPR),
- The right to erasure / right to be forgotten (Art. 17 GDPR),
- The right to restriction of data processing (Art. 18 GDPR).
To exercise these rights, please contact:
E-Mail:
possible.sh-holding@bechtle.com
The same applies if you have any questions regarding data processing in our
organization or when you wish to withdraw your consent. You also have a right of
appeal to the relevant data protection supervisory authority.
Right to object
Please note the following with respect to your right to object:
If we process your personal data for direct marketing, you have the right to
object to this data processing at any time without providing the reasons for
such objection. This also applies to profiling insofar as it is associated with
direct marketing.
If you object to the processing for direct marketing, we will no longer process
your personal data for such purposes. The objection is free of charge and can
be made informally, where appropriate to:
possible.sh-holding@bechtle.com.
Should we process your data to protect legitimate interests, you may object to
such processing at any time for reasons that arise from your specific situation;
this also applies to profiling based on these provisions.
We will then cease to process your personal information unless we can
demonstrate compelling legitimate grounds for processing such information
that outweigh your interests, rights and freedoms, or the processing is
intended to assert, exercise or defend legal claims.
Purposes and legal bases of data processing
The processing of your personal data complies with the provisions of the GDPR and
all other applicable data protection regulations. Legal bases for data processing
arise in particular from Art. 6 GDPR.
We use your data to initiate business, to fulfil contractual and legal obligations, to
conduct the contractual relationship, to offer products and services and to
consolidate customer relationships, which may include marketing and direct
marketing.
Your consent also constitutes a legal basis for data processing. In this respect, we
will inform you of the purposes of data processing and the right to withdraw your
consent.
Data transfers / Disclosure to third parties
We will only transmit your data to third parties within the scope of given statutory
provisions or based on consent. In all other cases, information will not be
transferred to third parties unless we are obliged to do so owing to mandatory legal
regulations (disclosure to external bodies, including the supervisory authorities or
law enforcement authorities).
Data recipients / categories of recipients
In our organisation, we ensure that only individuals who are required to process the
relevant data to fulfil their contractual and legal obligations are authorised to handle
personal data.
In some cases, service providers assist our specialist departments to fulfil their
tasks. The necessary data protection contract has been concluded with all service
providers.
Transfers of personal data to third countries
A transfer of data to third countries (outside the European Union or the
European Economic Area) shall only take place if required by law, if necessary
for the conclusion or performance of a contract concluded or if you have
provided your consent for such a transfer.
In such cases, compliance with the level of data protection is ensured by
appropriate measures according to Art. 44 et seq. GDPR.
Period of data storage
We store your data for as long as such is required for the relevant processing
purposes. Please note that numerous retention statutory periods require that data
must be stored for a specific period. This relates in particular to retention obligations
for commercial or fiscal purposes (e.g. commercial code, tax code, etc.). The data
will be routinely deleted after use unless a further period of retention is required.
We may also retain data if you have given us your permission to do so, or in the
event of any legal disputes and we use the evidence within the statutory limitation
period, which may be up to 30 years; the standard limitation period is 3 years.
Secure transfer of data
We implement the appropriate technical and organisational security measures to
ensure the optimal protection of the data stored by us against accidental or
intentional manipulation, loss, destruction or access by unauthorised persons. The
security levels are continuously reviewed in collaboration with security experts and
adapted to new security standards.
The data exchange to and from our website is encrypted. We provide https as a
transfer protocol for our website, and always use the latest encryption protocols.
Obligation to provide data
A range of personal data is required to establish, implement and terminate the
obligation and the fulfilment of the relevant contractual and legal obligations. The
same applies to the use of our website and the various functions we provide.
In some cases, legal regulations require data to be collected or made available.
Please note that it will not be possible to process your request without this
information.
Data categories, sources and origin of data
The data we process is defined by the relevant context.
a)
Cookies (Art. 6 Para. 1 lit. a, f GDPR, Section 25 Para. 1, 2 TTDSG – The
German Federal Law on Data Protection and the Protection of Privacy in
Telecommunications and Telemedia)
On our website, we are using so-called cookies. Cookies use to make our content
more user-friendly, effective and secure. Cookies are small text-files, which are
stored (locally) in your devices ́ browser. Cookies are containing pseudonymous
data only, in most cases even only anonymous data. Some cookies are persisting for
a single browsing session (so-called session-cookies); others are active for a longer
period of time (so-called persistent cookies, such as e.g. the ones used to save
consent-settings). The latter kind of cookies is subject to auto-deletion after its pre-
set expiration (usually 6 months).
We do not use any technologies or services to analyze the behavior of visitors to our
website.
Most browsers accept cookies automatically. However, you may deactivate, restrict
or delete cookies manually by your browsers ́ settings or software-based. Should
cookies be deactivated, our website may eventually not be used anymore or to a
limited extent, only.
b)
Log files (Art. 6 Para. 1 lit. f GDPR)
We collect and process the following data when you visit our website:
- Name des Internet Service-Providers
- Information on the website from which you visited us
- Web browser and operating system used
- The IP address by your allocated Internet service provider
- Files accessed, volume of data transferred, downloads/file export
- Information on websites accessed on our site, including date and time
For reasons of technical security (in particular to safeguard against attempts to
attack of our web server), this data is stored in accordance with Article 6 (1) lit f
GDPR. Anonymization takes place no later than after seven days by abbreviating the
IP address so that no reference is made to the user.
c)
Contact via email (Article 6 Para.1 lit. a, b GDPR)
We provide you with the option to contact us per email.
If you contact us by email, we will process the personal information provided in the
email solely for the purpose of processing your request.
If necessary to process your request, it can also be forwarded to one of the
consortium partners named in the imprint.
Any information collected will be deleted after the respective purpose has been
achieved.
Links to other providers
Our website also contains clearly identifiable links to the Internet sites of other
companies. Although we provide links to websites of other providers, we have no
influence on their content, and no guarantee or liability can therefore be assumed
for such. The content of these pages is always the responsibility of the respective
provider or operator of the pages.
The linked pages were checked at the time of linking for potential legal violations
and identifiable infringements. No illegal content was identified at the time of
linking. However, a permanent content control of the linked pages is not reasonable
without concrete evidence of an infringement and, upon notification of a violation of
rights; such links will be promptly removed.