This data protection of STEP Sigriner Elektronik GmbH uses the terminology, which are used in the general data protection basic regulation (GDPR). The terms are de-fined in Article 4 GDPR. The data protection uses the following terms:
any information relating to an identified or identifiable natural person (hereinafter “da-ta subject”); a natural person is regarded as identifiable, which can be identified di-rectly or indirectly, in particular by association with an identifier such as a name, with an identification number, with location data, with an online identifier or with one or more special features, which are the expression of the physical, physiological, genet-ic, mental, economic, cultural or social identity of this natural person;
any process or series of operations related to personal data such as collection, or-ganization, ordering, storage, adaptation or modification, reading, querying, use, dis-closure, performed with or without the aid of automated procedures by transmission, dissemination or any other form of provision, matching or linking, restriction, erasure or destruction;
Restriction of processing:
the marking of stored personal data in order to limit their future processing;
the processing of personal data in such a way that the personal data can no longer be assigned to a specific data subject without the need for additional information, provided that such additional information is kept separate and subject to technical and organizational measures to ensure that the personal data are not assigned to an identified or identifiable natural person;
the natural or legal person, public authority, agency or other adjustment that, alone or in concert with others, decides on the purposes and means of processing personal data; are the purposes and means of such processing are determined by Union law or the law of the Member States, the controller or the specific criteria of this appoint-ment may be provided for Union or national law;
a natural or legal person, public authority, agency or other adjustment that processes personal data on behalf of the controller;
a natural or legal person, public authority, agency or other adjustment to which per-sonal data are disclosed, whether or not it is a third party. However, authorities which may receive personal data under Union or national law in connection with a particular mission are not considered to be recipients; the processing of the data by the authori-ties shall be in accordance with the applicable data protection rules in accordance with the purposes of the processing;
a natural or legal person, public authority, agency or other adjustment, except for the data subject, the responsible, the processor and the persons authorized under the direct responsibility of the controller or the processor to process the personal data;
the data subject voluntarily, in an informed and unequivocal manner, for the particular case in the form of a statement or other unambiguous confirmatory act by which the data subject indicates that he / she agrees to the processing of the personal data;
II. Name and contact details
This data protection applies to data processing by:
STEP Sigriner Elektronik GmbH
Tel.: +49 8671 924 96 0
Fax: +49 8671 72476
The data protection officer of STEP Sigriner Elektronik GmbH can be reached at the following address:
Tel.: +49 8671 9245220
III. Collection and processing of personal data
Visit the website
When you visit our website, the following information is collected by our web server by default:
• the name of your Internet service provider
• the website from which you visit us
• the pages you visit with us
• the transferred amount of data
• Internet Protocol Address (IP Address)
• Date and duration of the visit
The collection, storage and evaluation of this data is done for statistical purposes and to ensure system security. These data are collected anonymously and stored sepa-rately from all personal data. A merge does not take place.
Cookies do not harm your device, do not contain viruses, Trojans or other malicious software. In the cookie information’s are stored, which are resulting in connection with the specific terminal used. However, this does not mean that we are immediately aware of your identity.
These are automatically deleted after leaving our page. In addition, to improve usabil-ity, we also use temporary cookies that are stored on your device for a specified peri-od of time. If you visit our site again to take advantage of our services, it will automat-ically recognize that you have already been with us and what inputs and settings you have made, so you do not have to re-enter them.
The data processed by cookies are required for the purposes mentioned to safe-guard our legitimate interests as well as those of third parties pursuant to Article 6 paragraph 1 sentence 1 f GDPR. Most browsers accept cookies automatically.
However, you can configure your browser so that no cookies are stored on your computer or always a hint appears before a new cookie is created. Disabling cookies completely may mean that you cannot use all features of our website.
V. Use and disclosure of personal data and appropriation
All personal data arising within the internet services of STEP Sigriner Elektronik GmbH will be processed in accordance with the respectively valid regulations for the protection of personal data, only for the purpose of contract execution and to safe-guard legitimate own business interests with regard to advice and support of our cus-tomers and the needs-based product design and used. Your personal data will nei-ther be sold to third parties nor marketed by STEP Sigriner Elektronik GmbH.
VI. Links to other websites
The website of STEP Sigriner Elektronik GmbH contains links to other websites. For the data protection principles or the content of the linked pages only their operators are responsible.
VII. External tools
This website uses Google Maps to display a site map. Google Maps is operated by Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. By using this website, you consent to the collection, processing and use by Google, one of its agents, or third parties of the data collected and entered by you.
You can submit a data protection to Google Maps here: Data protection Google Maps (google.com)
STEP Sigriner Elektronik GmbH uses technical and organizational security measures to protect the data that you make available to STEP Sigriner Elektronik GmbH from accidental or intentional manipulation, loss, destruction or access by unauthorized persons. Our security measures are continuously improved in line with technological developments.
IX. Rights of the data subject
Each data subject has rights under Article 12 ff. of the EU general data protection basic regulation (GDPR).
In order to exercise these rights, the data subject can contact the data protection of-ficer of STEP Sigriner Elektronik GmbH at any time. This includes in particular the right:
Right of access by the data subject – Article 15
The data subject shall have the right to obtain from the STEP Sigriner Elektronik GmbH confirmation as to whether or not personal data concerning him or her are be-ing processed, and where that is the case, access to the personal data and the fol-lowing information:
1. the purposes of the processing;
2. the categories of personal data concerned;
3. the recipients or categories of recipient to whom the personal data have been or will be disclosed, in particular recipients in third countries or international organisa-tions;
4. where possible, the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period;
5. the existence of the right to request from the controller rectification or erasure of personal data or restriction of processing of personal data concerning the data sub-ject or to object to such processing;
6. the right to lodge a complaint with a supervisory authority;
7. where the personal data are not collected from the data subject, any available in-formation as to their source; 5419/1/16 REV 1 139 EN
8. the existence of automated decision-making, including profiling, referred to in Arti-cle 22(1) and (4) and, at least in those cases, meaningful information about the logic involved, as well as the significance and the envisaged consequences of such pro-cessing for the data subject.
Where personal data are transferred to a third country or to an international organiza-tion, the data subject shall have the right to be informed of the appropriate safe-guards pursuant to Article 46 relating to the transfer.
Right to rectification – Article 16
The data subject shall have the right to obtain from the controller without undue delay the rectification of inaccurate personal data concerning him or her. Taking into ac-count the purposes of the processing, the data subject shall have the right to have incomplete personal data completed, including by means of providing a supplemen-tary statement.
Right to erasure (‘right to be forgotten’) – Article 17
The data subject shall have the right to obtain from the STEP Sigriner Elektronik GmbH the erasure of personal data concerning him or her without undue delay and the STEP Sigriner Elektronik GmbH shall have the obligation to erase personal data without undue delay where one of the following grounds applies:
1. the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed;
2. the data subject withdraws consent on which the processing is based according to point (a) of Article 6(1), or point (a) of Article 9(2), and where there is no other legal ground for the processing; 5419/1/16 REV 1 141 EN
3. the data subject objects to the processing pursuant to Article 21(1) and there are no overriding legitimate grounds for the processing, or the data subject objects to the processing pursuant to Article 21(2);
4. the personal data have been unlawfully processed;
5. the personal data have to be erased for compliance with a legal obligation in Union or Member State law to which the controller is subject;
6. the personal data have been collected in relation to the offer of information society services referred to in Article 8(1).
Where the STEP Sigriner Elektronik GmbH has made the personal data public and is obliged pursuant to paragraph 1 to erase the personal data, the S, taking account of available technology and the cost of implementation, shall take reasonable steps, including technical measures, to inform controllers which are processing the personal data that the data subject has requested the erasure by such controllers of any links to, or copy or replication of, those personal data.
Right to restriction of processing – Article 18
The data subject shall have the right to obtain from the STEP Sigriner Elektronik GmbH restriction of processing where one of the following applies:
1. the accuracy of the personal data is contested by the data subject, for a period enabling the controller to verify the accuracy of the personal data;
2. the processing is unlawful and the data subject opposes the erasure of the per-sonal data and requests the restriction of their use instead;
3. the controller no longer needs the personal data for the purposes of the pro-cessing, but they are required by the data subject for the establishment, exercise or defence of legal claims; 5419/1/16 REV 1 143 EN
4. the data subject has objected to processing pursuant to Article 21(1) pending the verification whether the legitimate grounds of the controller override those of the data subject.
Right to data portability – Article 20
The data subject shall have the right to receive the personal data concerning him or her, which he or she has provided to a controller, in a structured, commonly used and machine-readable format and have the right to transmit those data to another control-ler without hindrance from the controller to which the personal data have been pro-vided, where:
1. the processing is based on consent pursuant to point (a) of Article 6(1) or point (a) of Article 9(2) or on a contract pursuant to point
2. of Article 6(1); and (b) the processing is carried out by automated means.
In exercising his or her right to data portability pursuant to paragraph 1, the data sub-ject shall have the right to have the personal data transmitted directly from one con-troller to another, where technically feasible.
The exercise of the right referred to in paragraph 1 of this Article shall be without prejudice to Article 17. That right shall not apply to processing necessary for the per-formance of a task carried out in the public interest or in the exercise of official au-thority vested in the controller.
Right to object – Article 21
The data subject shall have the right to object, on grounds relating to his or her par-ticular situation, at any time to processing of personal data concerning him or her which is based on points (e) or (f) of Article 6(1), including profiling based on those provisions. The STEP Sigriner Elektronik GmbH shall no longer process the personal data unless the controller demonstrates compelling legitimate grounds for the pro-cessing which override the interests, rights and freedoms of the data subject or for the establishment, exercise or defence of legal claims.
Where personal data are processed for direct marketing purposes, the data subject shall have the right to object at any time to processing of personal data concerning him or her for such marketing, which includes profiling to the extent that it is related to such direct marketing. Where the data subject objects to processing for direct mar-keting purposes, the personal data shall no longer be processed for such purposes.
At the latest at the time of the first communication with the data subject, the right re-ferred to in paragraphs 1 and 2 shall be explicitly brought to the attention of the data subject and shall be presented clearly and separately from any other information.
Revocation of a data protection consent
Any person affected by the processing of personal data has the right at any time to revoke consent to the processing of personal data.
Insofar as personal data are collected, processed or stored in the framework of an application process, this is done only for the purpose of carrying out the application process. If no employment relationship is established with the applicant, the data will be deleted three months after the end of the application procedure, unless legal re-quirements specify otherwise or preclude other legitimate interests of the processing agency from being deleted. Other interests in this regard are in particular proof duties in a procedure under the AGG.
XI. Legal basis of data processing
The legal basis for the processing of personal data is Art. 6 I lit.a GDPR for pro-cessing with consent, Art. 6 I lit.b GDPR for processing for the performance of con-tracts, and Art. 6 I lit.c GDPR for processing to fulfill legal requirements. In exception-al cases, processing may also be carried out on the basis of Art. 6 I lit.d of the GDPR for the protection of vital interests, as well as according to Art. 6 I lit.e GDPR for the performance of a task which is in the public interest and that of the person responsi-ble has been transferred.
XII. Up-to-dateness and change of this data protection expla-nation
This data protection is currently valid and is valid as of May 2018.
In case of doubt, the German version of the data protection has priority.