We welcome you to our websites and thank you for your interest in our company. We strive to offer you the best possible service; this also includes continuous optimizing of our Internet presence and, it goes without saying, protection of your data.
Please find below information about how we handle your data in accordance with article 13 of the General Data Protection Regulation (“GDPR”).
The entity stated in our legal notice is responsible for collection and processing of the data described below.
We have implemented technical and organizational measures to ensure that your data are comprehensively protected against any undesired access. We use an encryption procedure on our sites. Your computer will use TLS encryption to transmit your data to our server via the Internet and vice versa. This is indicated by the locked padlock symbol in your browser status bar and the address line beginning with "https://".
Whenever you visit our websites, for statistical purposes our web server will temporarily store in a log your so-called “usage data” to allow us to improve the quality of our websites. This data set comprises:
- The name and address of the requested content,
- The date and time of the request,
- The data volume transmitted,
- The access status (file transmitted, file not found),
- The description of the type of web browser and operating system used,
- The referral-link, which shows from which site you accessed our website,
- The requesting computer’s IP address
We will store the IP address transmitted by your web browser for a period of seven days strictly for the purpose of being able to recognize, limit and rectify any attacks on our websites. After expiry of this period, we will erase or anonymize the IP address. The legal basis for this is article 6 paragraph 1 lit. f GDPR.
Within the framework of data processing on our behalf as defined by article28 GDPR, we will transfer your data to service providers who assist us with the operation of our websites and the related processes. Our service providers are bound by strict instructions issued by us and subject to corresponding contractual obligations.
If we are transferring personal data to a third country outside the EU, we will always ensure that there is an adequate level of data protection.
Under the terms of the GDPR, you have the following rights as a so-called “data subject” – the right to information (article 15 GDPR); the right to rectification (article 16 GDPR); the right to erasure (article 17 GDPR); the right to restriction of processing (article 18 GDPR); the right to object (article 21 GDPR) and the right to data portability (article 20 GDPR). Your rights to information and erasure are subject to limitations in accordance with Sect. 34 and 35 BDSG (German Federal Data Protection Act). In addition, you have a right to lodge a complaint with a supervisory authority (article 77 GDPR in conjunction with section 19 BDSG).
Should data be gathered on the basis of article 6 paragraph 1 lit. f (data processing for the purposes of legitimate interests), then you have the right to object to processing at any time on grounds relating to your particular situation. Should you do so, then we will no longer process your personal data unless there are compelling legitimate grounds for processing which override the interests, rights and freedoms of the data subject or for the establishment, exercise or defence of legal claims.
Under the terms of article 77 GDPR you have the right to lodge a complaint with a supervisory authority if you consider that the processing of your personal data infringes data protection law regulations. You can assert this right in particular with a supervisory authority in the member state of your habitual residence; place of work or the place of the alleged infringement.
If you have any questions or feedback concerning data protection, please contact our data protection expert:
Our websites sometimes use “cookies” to ensure a user-friendly experience. Cookies are small text files which are stored on your end device and can be read. There are different kinds of cookies. “Session cookies” are deleted as soon as you close your browser, while “persistent cookies” are stored for longer than one session. Cookies can contain data which identify the device being used. In some cases, cookies also contain information on certain settings; this information is not of a personal nature.
We use both session and persistent cookies on our websites.
These cookies do not contain any personal data and we do not combine them with other data so that we can identify you personally. In addition to this, we employ no analysis tool.
Processing is carried out on the basis of Art. 6 Para. 1 Clause 1 lit. f GDPR.
For reasons of data protection, we do not directly incorporate any social plug-ins in our website. If you bring up our pages no data will be transmitted to social media services like Facebook, Twitter, XING and Google+. This rules out the creation of a profile for you by third parties.
On some subpages we incorporate YouTube videos in our website. Bringing up these subpages results in content being downloaded from YouTube. In this context, YouTube will also be given your IP address, as this is a technical requirement for accessing the content in question. We have fundamentally no influence on the further processing of the data by YouTube. However, we have taken care, when embedding the videos, to activate the extended data protection mode that YouTube offers, so that no merging of the data with your YouTube account will take place as long you are not clicking on the video.
Compagnie Française d'Assurance pour le Commerce Extérieur SA (Coface), German Branch
We may transfer personal data collected as part of the contractual relationship about the application, execution and termination of the respective business relationship as well as data regarding behavior contrary to the contract or fraudulent behavior to Coface, German Branch, Isaac-Fulda-Allee 1, 55124 Mainz. Legal basis for the transfer is article 6 para 1 lit. b and article 6 para 1 lit. f GDPR. Transfers based on article 6 para 1 lit. f GDPR may only take place insofar as this is necessary to protect the legitimate interests of [PN-Gesellschaft] or third parties and the interests, fundamental rights and freedoms of the data subject which require the protection of the personal data do not overweight. The data exchange with Coface also serves to fulfill legal obligations to carry our credit checks on customers (section 505a and section 506 German civil Code).
Coface processes the received data and uses those also for the purpose of profiling (scoring), in order to provide their contractual partners contractual partners in the European Economic Area with information for, inter alia, assessment of creditworthiness of a natural person. Further information relating to the activities Coface can be found online www.coface.de/Home/Allgemeine-Informationen/Datenschutz.
We process your personal data in accordance with the applicable data protection provisions, based on section 26 of the BDSG [Federal Data Protection Act]. We process the data you relinquish to us in connection with your online application exclusively for the purpose of selecting from among the candidates. No data processing for other purposes will take place.
You yourself determine the scope of the data you would like to communicate to us in connection with your online application. Online applications are transmitted to our HR division and processed by HR as rapidly as possible. The data are transmitted in encrypted form. As a rule, applications are forwarded to the heads of the responsible specialist divisions of our company. Other than that, no sharing of your data takes place. Your details will be treated by us as confidential. If your application proves unsuccessful, your documents will be deleted on the expiry of 6 months.
If you wish us to have regard to your application in connection with other or future job vacancies, please do include a note on your application to this effect. Your data will then be processed in compliance with article 6, section 1 (a) of the General Data Protection Regulation. In this case, your application will be deleted after two years.
© 02/2021 NordBit GmbH & Co. KG