The following text provides you with information about the processing of your personal data carried out by us as part of our website.

RESPONSIBLE

‍NIRONIT Edelstahl GmbH & Co. KG
Am Oheberg 8
21224 Rosengarten

‍

Telephone: +49 (0) 41 08 - 43 01 — 0
Email: info (at) nironit.de
‍

DATA PROTECTION OFFICER

We have appointed a data protection officer.

FKC CONSULT GmbH
Eschenburgstraße 5
23568 Luebeck
Telephone: + 49 (0) 451 - 400510
Email: datenschutz (at) nironit.de

‍

hosting

This website is hosted externally. The personal data collected on this website is stored on the hoster/host's servers. This may include IP addresses, contact requests, meta and communication data, contract data, contact details, names, website accesses and other data generated via a website.

External hosting is provided for the purpose of fulfilling the contract with our potential and existing customers (Art. 6 para. 1 lit. b DSGVO) and in the interest of a secure, fast and efficient provision of our online offering by a professional provider (Art. 6 para. 1 lit. f GDPR). If a corresponding consent has been requested, processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information on the user's device (e.g. device fingerprinting) within the meaning of TTDSG. The consent can be withdrawn at any time.

Our host will only process your data to the extent that this is necessary to fulfill its
performance obligations are required and follow our instructions with regard to this data.

‍

We use the following host:

Mittwald CM Service GmbH & Co. KG
Königsberger Strasse 4
32339 Espelkamp

‍

Order processing

We have concluded an order processing contract (AVV) to use the above service. This is a contract required by data protection law, which ensures that it only processes the personal data of our website visitors in accordance with our instructions and in compliance with the GDPR.

‍

WHEN DO WE PROCESS WHICH PERSONAL DATA

We process your personal data in the following cases:

1. When you visit our website or online shop, the browser used on your device automatically sends information to the server of our website. This information is temporarily stored in a so-called log file. The following information is collected without your intervention and stored until it is automatically deleted:

• IP address of the requesting computer,
• date and time of access,
• name and URL of the retrieved file,
• website from which access is made (referrer URL),
• browser used and, if applicable, the operating system of your computer and the name of your access provider.

1. We also use cookies and analysis services when you visit our website. More information about this under “Analysis tools”. If you have any questions, we offer you the opportunity to contact us using a form provided on the website/online shop. A valid email address is required so that we know who sent the request and to be able to answer it. Further information can be provided voluntarily.
   
2. If you want to send us an application to apply for an advertised position or on an unsolicited basis, we will process the documents and personal data you have submitted. For unsolicited applications, we need name, address and other contact details, date and place of birth and nationality as well as qualification documents. In addition, you can provide us with other voluntary data that, in your opinion, would be beneficial to establish an employment relationship.
   
3. Sign up for our newsletter — When you sign up for our newsletter, we collect your email address, last name, first name, company, position and city. The data you provide will be processed.
   
4. On our website, we offer you the opportunity to register there. The data entered in the course of this registration, which can be seen from the registration form input mask, company, address, VAT ID number, contact person, e-mail address, telephone number, are collected and stored exclusively for the use of our offer. When you register on our site, we will also save your IP address and the date and time of your registration.

‍

PURPOSES OF DATA PROCESSING

We use the personal data you have actively provided only for the agreed purpose and only to the extent necessary.

1. The above data is processed by us for the following purposes:
   
   The legal basis for data processing is Article 6 (1) (f) GDPR. Our legitimate interest results from the data collection purposes listed above. In no case do we use the collected data for the purpose of drawing conclusions about you.

• ensuring a smooth connection to the website,
• ensuring convenient use of our website,
• evaluation of system security and stability, and
• for further administrative purposes.
  ‍

2. Data processing for the purpose of contacting us is carried out in accordance with Article 6 (1) (b) GDPR on the basis of a pre-contractual measure. If a contract is concluded, the data can be included in our customer care system. The data will not be processed for any other purposes.
   
3. Data processing serves the purpose of establishing and executing an employment relationship in accordance with Article 88 GDPR in conjunction with Section 26 BDSG. In the event of a positive decision, the personal data is included in our personnel file and pursues the purposes of the “employee management” procedure.
   
4. Data processing for the purpose of executing and processing orders via our online shop or contract inquiries via our online contact form is required in accordance with Article 6 (1) (b) GDPR to fulfill a contract with us or to carry out pre-contractual measures.
   ‍
5. If you have expressly consented in accordance with Article 6 (1) (a) GDPR, we will use your email address to send you our newsletter on a regular basis. Existing customers who have purchased goods from us or ordered services and have provided their email address will receive product recommendations within the framework of the legal requirements in accordance with Article 7 (3) UWG in conjunction with Article 6 (1) (f) GDPR, provided that we have informed of this when concluding the contract and have not objected to this.

‍

CATEGORIES OF RECIPIENTS OF PERSONAL DATA

Your personal data will be kept confidential by us and will generally only be passed on to third parties, provided that:

• you have given your express consent in accordance with Article 6 (1) (a) GDPR,
• the transfer is necessary in accordance with Article 6 (1) (f) GDPR to assert, exercise or defend legal claims and there is no reason to assume that you have an overriding legitimate interest in not disclosing your data,
• in the event that there is a legal obligation to transfer data in accordance with Article 6 (1) (c) GDPR, and
• This is legally permitted and is required in accordance with Article 6 (1) (b) GDPR to process contractual relationships with you.

In addition, your personal data will be transferred to third parties to the following categories of recipients:

Companies that help us assess your creditworthiness (commercial credit insurers). The associated data processing serves the legitimate interest of minimizing payment default risks. We only receive a notification of the summarized results of commercial credit insurers without further details. You can object to processing based on a legitimate interest at any time.

Data will only be transferred to third countries if you have given us your consent.

‍

DURATION FOR WHICH PERSONAL DATA IS STORED

1. Cookies are stored in your browser. So-called session cookies are automatically deleted from your browser after you leave the website. In this case, the duration of storage depends on the technical functionality of the browser you are using. So-called temporary cookies remain stored for a certain period of time, depending on the cookie.
2. Personal data that is submitted to us in connection with a contact request on our website will only be stored for the duration of processing the request. If you object to data processing beforehand, the inquiries will not be processed and your data will be deleted. If there is a contract, the personal data you provide will be stored in our customer care system for the duration of the legal storage obligations and then deleted; this is usually 10 years for tax-relevant documents beginning with the end of the year in which the contract was fully executed or terminated (§ 147 AO, § 257 HGB), unless there is any other legal obligation that obliges us to store them for a shorter or longer period of time.
3. The personal data collected as part of a job advertising/application process is processed by a

• Cancellation: Saved for at least three months. In turn, the longest storage period is no more than six months.
• Discontinuation: Do our storage periods apply. The information you are entitled to will be provided to you when you hire.

1. If you have given us your consent to data processing, for example when ordering our newsletter, the personal data you provide will be stored until further notice.
2. Personal data that is submitted to us in connection with registration on our website or in our online shop will only be stored for as long as the account exists. If a contract is concluded, the data you provide is regularly stored in our customer care system for 10 years from the end of the year in which the contract was processed or ended, unless there is another legal obligation that obliges us to store it for a shorter or longer period of time.

‍

We would like to point out that we delete your data if its storage is prohibited (in particular if the data is incorrect and cannot be corrected). Blocking takes the place of deletion if there are legal or actual obstacles (for example, special storage obligations due to commercial and tax law requirements).

‍

VI. QUESTIONS ABOUT DATA PROTECTION AND RIGHTS

You have the right to receive information about the origin, recipient and purpose of your stored personal data free of charge at any time. You also have the right to request that this data be corrected, blocked or deleted. You can contact us at any time about this, as well as if you have any further questions about data protection (see contact above). You also have the right to lodge a complaint with the competent supervisory authority.

In detail, as a data subject, you have the following rights vis-à-vis us as the responsible body:

‍

1. Right to information
   You can request confirmation as to whether personal data concerning you is being processed by us. If there is such processing, you can request information about the following information:

• processing purposes;
• the recipients or categories of recipients to whom the personal data concerning you has been or is still being disclosed;
• if possible, the planned duration of storage of personal data concerning you or, if this is not possible, criteria for determining the storage period;
• the existence of further rights, see below;
• all available information about the origin of the data if the personal data is not collected from you;
• the existence of automated decision-making, including profiling, and, if applicable, more detailed information about this.
  
  You have the right to be informed about the appropriate guarantees under Article 46 GDPR when forwarding your data to a third country or an international organization.
  ‍

2. Right to rectification
   You have the right to request us to correct incorrect or incomplete personal data concerning you without undue delay.
   ‍
3. Right to restrict processing 
   You have the right to ask us to restrict processing if one of the following conditions is met:

• You dispute the accuracy of the personal data.
• The processing of the data is unlawful and you refuse to delete the personal data and instead demand that the use of the personal data be restricted.
• We no longer need the personal data for processing purposes, but you need the data to assert, exercise or defend legal claims; or
• You have filed an objection to the processing (see below) and it is not yet clear whether our legitimate reasons outweigh yours.

4. Right to delete 
   You can request that we delete the personal data relating to you immediately, and we are obliged to delete this data immediately if one of the following reasons applies:

• Your personal data is no longer necessary for the purposes for which we collected or otherwise processed it.
• You withdraw your consent and there is no other legal basis for processing.
• You file an objection (see below) against the processing.
• Your personal data was processed unlawfully.
• It is necessary for us to delete your personal data to fulfill a legal obligation under Union law or the law of the member states.
• We collected personal information based on a child's consent.
  ‍

5. Right to be informed
   ‍If you have asserted the right to correct, delete or restrict processing against us, we are obliged to notify all recipients to whom the personal data concerning you has been disclosed of this correction or deletion of the data or restriction of processing, unless this proves impossible or involves disproportionate effort. You have the right to be informed by us about these recipients.
   ‍

6. Right to data portability
   You have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format. You also have the right to transfer this data to another person responsible without hindrance from the person responsible to whom the personal data was provided, provided that
   

• the processing is based on consent in accordance with Article 6 (1) (a) GDPR or on a contract in accordance with Article 6 (1) (b) GDPR and
• the processing is carried out using automated procedures
  ‍
  In exercising this right, you can request that the personal data concerning you be transmitted directly from one person responsible to another person responsible, insofar as this is technically feasible. The freedoms and rights of other persons must not be affected as a result. The right to data portability does not apply to processing of personal data that is necessary for the performance of a task that is in the public interest or in the exercise of official authority that has been transferred to the person responsible.
  ‍

7. Right to object
   For reasons arising from your particular situation, you have the right to object at any time to the processing of personal data concerning you, which is based on one of the following bases:

• The processing of your personal data by us is necessary for the performance of a task that is in the public interest or in the exercise of official authority that has been delegated to us; or
• processing is necessary to protect our legitimate interests or those of a third party, unless your interests or fundamental freedoms prevail, which require the protection of your personal data
  
  You also have the right to object to profiling based on this processing. If we process your personal data for direct marketing purposes, you have the right to object at any time to the processing of your personal data for the purpose of such marketing. This also applies to profiling, insofar as it is associated with such direct advertising.
  ‍

8. Right to lodge a complaint with a supervisory authority
   In the event of breaches of data protection law, you, as the person concerned, have the right to lodge a complaint with the supervisory authority. A list of data protection officers and their contact details can be found at the following link State data protection authorities.

‍

AUTOMATED DECISION MAKING, INCLUDING PROFILING

Under certain circumstances, there may be automated profiling with the aim of evaluating personal aspects. We use these profiling measures in the following cases: Due to legal and regulatory requirements, we are required to combat money laundering, terrorist financing and financial endangering crimes. Data evaluations (including online comparison with statutory lists) are also carried out.

‍

COOKIES AND ANALYSIS TOOLS

1. Description of data processing, purpose and legal basis 
   We use cookies on our site. These are small files that your browser automatically creates and that are stored on your device (laptop, tablet, smartphone, etc.) when you visit our site. Cookies do not cause any damage to your device and do not contain viruses, Trojans or other malware. Information relating to the specific device used is stored in the cookie. However, this does not mean that we are immediately aware of your identity as a result.
   
   On the one hand, the use of cookies serves to make the use of our website more pleasant for you. For example, we use so-called session cookies to recognize that you have already visited individual pages of our website. These are automatically deleted after you leave our site.
   
   In addition, we also use temporary cookies to optimize usability, which are stored on your device for a specific period of time. If you visit our site again to use our services, it will automatically recognize that you have already been with us and what entries and settings you have made so that you do not have to enter them again.
   
   On the other hand, we use cookies to statistically record the use of our website and to evaluate it for the purpose of optimising our offer for you. These cookies enable us to automatically recognize that you have already visited our site when you visit our site again. These cookies are automatically deleted after a defined period of time.
   
   According to legal requirements, the storage of information on your device - e.g. by setting cookies or even retrieving information (tracking) - is generally only permitted if you have given your prior consent. However, consent does not have to be given if such saving/retrieval is necessary for the website to be offered (including technically necessary cookies).
   
   At the start of using the website, you will therefore be informed about the use of cookies in the form of a cookie consent platform and with reference to this privacy policy and consent will be obtained (apart from the technically necessary cookies) to store the cookie and the associated processing of personal data.
   
   Your consent can be withdrawn at any time with effect for the future. To do this, you can change your settings via the cookie consent platform available on the website. In addition, you can prevent cookies from being saved by making appropriate settings in your browser (see VIII.,3.).
   
   Cookies that are necessary to carry out the electronic communication process, to provide certain functions requested by you (e.g. for the shopping cart function) or to optimize the website (e.g. cookies to measure the web audience) (necessary cookies) are stored on the basis of Article 6 (1) (f) GDPR, unless another legal basis is provided. The website operator has a legitimate interest in storing necessary cookies for
   technically error-free and optimized provision of its services. If consent to the storage of cookies and comparable recognition technologies has been requested, processing is carried out exclusively on the basis of this consent (Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TTDSG); consent can be withdrawn at any time.
   
   Cookies for statistical evaluation of the website and cookies from third-party providers are used to improve the quality of our website and to optimize our offering. The data collected in this way is only used by us in pseudonymized user profiles. In particular, we use the offers of the third-party providers listed below to draw attention to our offers and to make it easier for you to get to our locations. We only carry out this processing if you have given us your consent to use these cookies for analysis & statistics (Art. 6 para. 1 lit. a GDPR).
   ‍

2. Note on data transfer to the USA and other third countries
   Among other things, we use tools from companies based in the USA or other third countries that are not secure under data protection law. If these tools are active, your personal data may be transferred to and processed in these third countries. We point out
   It is clear that no level of data protection comparable with the EU can be guaranteed in these countries.
   For example, US companies are required to disclose personal data to security authorities without you, as the person concerned, being able to take legal action against this. It cannot therefore be ruled out that US authorities (e.g. secret services) may process, evaluate and permanently store your data on US servers for monitoring purposes. We have no influence on these processing activities.
   ‍

3. Duration of storage and right of objection 
   “Session cookies” are automatically deleted at the end of your visit. Other cookies remain stored on your device for a certain period of time or until you delete them, so-called “temporary cookies.” These cookies enable us or our partner companies (third-party cookies) to recognize your browser the next time you visit. Temporary cookies are automatically deleted after a specified period of time, which may vary depending on the cookie.
   
   You can set your browser so that you are informed when cookies are set and only allow cookies in individual cases, exclude the acceptance of cookies for specific cases or in general, and activate the automatic deletion of cookies when you close the browser. If cookies are deactivated, the functionality of this website may be limited.
   
   How to do this in detail can be found in the browser's help information.
   
   These can be found for the respective browsers under the following links:

• Edge: https://support.microsoft.com/de-de/help/4027947/microsoft-edge-delete-cookies
• Firefox: https://support.mozilla.org/de/kb/cookies-erlauben-und-ablehnen
• Chrome: http://support.google.com/chrome/bin/answer.py?hl=de&hlrm=en&answer=95647
• Safari: https://support.apple.com/de-de/guide/safari/sfri11471/12.0/mac/10.14
• Opera: https://help.opera.com/de/latest/web-preferences/#cookies
  
  Alternatively, you can find out more about the setting of cookies and make settings for this from the Digital Advertising Alliance at the Internet address www.aboutads.info.

‍

CONSENT WITH CONSENTMANAGER

Our website uses ConsentManager's consent technology to obtain your consent to store certain cookies on your device or to use certain technologies and to document this in accordance with data protection regulations. The provider of this technology is Jaohawi AB, Håltegelvägen 1b, 72348 Västerås, Sweden, website:
https://www.consentmanager.de (hereafter “ConsentManager”).

When you enter our website, a connection is made to ConsentManager's servers to obtain your consent and other explanations about cookie usage. ConsentManager then stores a cookie in your browser in order to be able to assign the consents given or their revocation to you. The data collected in this way will be stored until you ask us to delete the
Delete the consent manager provider cookie yourself or the purpose for data storage no longer applies. Mandatory legal storage obligations remain unaffected.

ConsentManager is used to obtain the legally required consent for the use of cookies. The legal basis for this is Art. 6 para. 1 lit. c GDPR.
‍

Order processing

We have concluded an order processing contract (AVV) to use the above service. This is a contract required by data protection law, which ensures that it only processes the personal data of our website visitors in accordance with our instructions and in compliance with the GDPR.

‍
MATOMO

This website uses the open source web analysis service Matomo.

With the help of Matomo, we are able to collect and analyze data about the use of our website by website visitors. This allows us to find out, among other things, when which page views were made and which region they came from. We also collect various log files (e.g. IP address, referrer, browsers and operating systems used) and can measure whether our website visitors perform certain actions (e.g. clicks, purchases, etc.).

The use of this analysis tool is based on Art. 6 para. 1 lit. f DSGVO. The
The website operator has a legitimate interest in analyzing user behavior in order to optimize both its website and its advertising. If a corresponding consent has been requested, processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information on the user's device (e.g. device fingerprinting) within the meaning of the TTDSG. The consent can be withdrawn at any time.

‍

IP anonymization

When analyzing with Matomo, we use IP anonymization. This abbreviates your IP address before analysis so that it can no longer be clearly assigned to you.

‍

Cookieless analysis

We have configured Matomo so that Matomo does not store cookies in your browser.

‍

hosting

We host Matomo with the following third-party provider:

Mittwald CM Service GmbH & Co. KG
Königsberger Strasse 4
32339 Espelkamp
‍

Order processing

‍We have concluded an order processing contract (AVV) to use the above service. This is a contract required by data protection law, which ensures that it only processes the personal data of our website visitors in accordance with our instructions and in compliance with the GDPR.

‍

GOOGLE MAPS

This site uses the Google Maps map service. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

To use the functions of Google Maps, it is necessary to save your IP address. This information is usually transferred to a Google server in the USA and stored there.

The provider of this site has no influence on this data transfer. If Google Maps is activated, Google can use Google Fonts for the purpose of uniformly displaying fonts. When you call up Google Maps, your browser loads the required web fonts into your browser cache to correctly display texts and fonts.

Google Maps is used in the interest of presenting our online offerings in an appealing way and making it easy to find the locations we have specified on the website. This represents a legitimate interest within the meaning of Article 6 (1) (f) GDPR. If a corresponding consent has been requested, processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TTDSG, insofar as consent to the storage of cookies or access to
includes information on the user's device (e.g. device fingerprinting) within the meaning of TTDSG. The consent can be withdrawn at any time.

Data transmission to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://privacy.google.com/businesses/gdprcontrollerterms/ and https://privacy.google.com/businesses/gdprcontrollerterms/sccs/.

More information on how to handle user data can be found in Google's privacy policy: https://policies.google.com/privacy?hl=de.

‍

SOCIAL MEDIA APPEARANCES

‍

general

‍We do not use social plug-ins as active buttons on our website. We only use icons to refer to our offer on the following social networks:

• LinkedIn, LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland
• Xing: New Work SE, Dammtorstraße 30, 20354 Hamburg, Germany
• Facebook, provider of this service is Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (hereinafter Meta)
• Instagram, provider of this service is Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland
• WhatsApp: WhatsApp Ireland Limited, Attn: Privacy Policy, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland
  
  We only display the social media icons on our pages. They are designed as inactive icons. To protect data protection, we use a solution that only transmits the address of our server to these services and not your IP address if you have activated a social media icon by clicking on it.
  
  If you click on such a social media icon on our site, a connection to these third parties is established via your web browser in a separate tab (tab). This allows these third parties to track visits to our sites. If you are a member of one of the social networks, you can share the content of our site with other members from your social network by activating the button.
  
  Your data may be processed outside the EU as a result of your participation in social networks or by visiting or accessing our social media sites. This may result in risks, for example because it may make it more difficult to enforce your rights.
  
  When you access a social network, cookies are usually stored on your device to record user behavior. If you have a user account on the respective network and are logged in there, your usage behavior can be saved for your user account. Social networks can analyze usage behavior and use it for market research and advertising purposes. This may result in advertising being shown to you on and off social networks.
  
  We have no influence on this. We have no influence on the data collected and stored about you by social networks. Through our above-mentioned social media sites, we receive evaluations of user data and can address users with interest-based advertising. If users interact with our social media presence and are logged in with a user account, we can generally also recognize the user profile and see the content of comments or postings about our website. This data processing is therefore carried out jointly with the respective provider of the social network. For the evaluation of data in connection with our social media sites, we have therefore concluded a joint responsibility contract with each provider (Art. 26 GDPR). In it, we have committed ourselves to providing you with this data protection information. Further information can be found in the privacy policies of the respective social networks. You can also assert your rights against us. However, the social network provider can fulfill your rights more comprehensively because the data for use and evaluation is also stored there.

‍

linkedin

We operate under https://www.linkedin.com/company/nironitedelstahl/mycompany/a social media presence through which we present photos and posts about our company, provide information about our services, publish job advertisements if necessary and communicate with customers. When using and accessing our LinkedIn page, user data is also processed by the Ireland-based company LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland and the US-based LinkedIn Corporation, 1000 W Maude Ave, Sunnyvale, CA 94085 (hereinafter “LinkedIn”). LinkedIn enables, among other things, a system in which LinkedIn distributes advertising across its network.

We analyse the views and interactions on our LinkedIn page. LinkedIn creates user profiles for this purpose, but only provides us with anonymous data in this regard, so-called page analyses. This is summarized data that gives us information about how users interact with our LinkedIn page. The statistics created are transmitted to us exclusively in anonymized form. We have no access to the respective underlying data. Based on this analysis service, we process your personal data together with LinkedIn. For this reason, we have concluded a contract with LinkedIn between joint controllers (Art. 26 GDPR).

You can access our LinkedIn page regardless of whether you have a LinkedIn account yourself or not. We process your personal data when you interact with our LinkedIn page, e.g. make a comment, click a Like button or send us a message. We do not share the data with other third parties. LinkedIn's terms of use at: https://ch.linkedin.com/legal/user-agreement?trk=hb_ft_userag

Depending on the nature of your activity, the legal basis for this data processing is your consent (Article 6 (1) (a) GDPR) or our legitimate interest (Article 6 (1) (f) GDPR) in customer-oriented marketing. LinkedIn users can withdraw their consent when publishing their comment or like at any time with effect for the future by deleting the comment or the relevant content. Withdrawal does not affect the lawfulness of the processing carried out on the basis of consent up to the withdrawal.

LinkedIn offers the option to object to certain data processing; related information and opt-out options can be found at https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out?trk=microsites-frontend_legal_cookie-policy.

LinkedIn users can go to https://www.linkedin.com/psettings/advertising influence the extent to which your usage behavior may be recorded when you visit our LinkedIn page.

Data processing using cookies used by LinkedIn can also be prevented by settings in the browser.

Data transmission to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://www.linkedin.com/legal/l/dpa and https://www.linkedin.com/legal/l/eu-sccs.
Details on how they handle your personal data can be found in LinkedIn's privacy policy: https://www.linkedin.com/legal/privacy-policy.

‍

xing

We operate under https://www.xing.com/pages/nironitedelstahlhandelgmbh-co-kg a social media presence through which we present photos and posts about our company, provide information about our services, publish job advertisements if necessary and communicate with customers. When using and accessing our Xing site, user data is also provided by the Germany-based company New Work SE, Dammtorstraße 30, 20354 Hamburg (hereinafter “Xing”). Xing enables, among other things, a system in which Xing distributes advertising across its network.

We analyse the views and interactions on our Xing site. For this purpose, Xing creates user profiles, but only provides us with anonymous data, so-called visitor and subscriber statistics. This is summarized data that gives us information about how users interact with our Xing site. The statistics created are transmitted to us exclusively in anonymized form. We have no access to the respective underlying data. Based on this analysis service, we process your personal data together with Xing. For this reason, we have concluded a contract with Xing between joint controllers (Art. 26 GDPR).

You can access our Xing page regardless of whether you have a Xing account yourself or not. We process your personal data when you interact with our Xing page, e.g. make a comment, click a Like button or send us a message. We do not share the data with other third parties. The terms of use of Xing at: https://www.xing.com/terms

Depending on the type of activity, the legal basis for this data processing is your consent (Article 6 (1) (a) GDPR) or our legitimate interest (Article 6 (1) (f) GDPR) in customer-oriented marketing. Xing users can withdraw their consent when publishing their comment or like at any time with effect for the future by deleting the comment or the relevant content. Withdrawal does not affect the lawfulness of the processing carried out on the basis of consent up to the withdrawal.

Xing offers the option to object to certain data processing; related information and opt-out options can be found at https://privacy.xing.com/de/datenschutzerklaerung/druckversion.

Xing users can go to https://privacy.xing.com/en/privacy-policy/information-we-automatically-receive-through-your-use-of-xing/determination-of-statistics/tracking-in-embedded-external-content and https://privacy.xing.com/en/privacy-policy/information-we-automatically-receive-through-your-use-of-xing/measurement-and-optimisation-of-advertising influence the extent to which your usage behavior may be recorded when you visit our Xing site.

Data processing using cookies used by Xing can also be prevented by settings in the browser.

‍

whatsapp

On our pages, we show the option to contact us via the WhatsApp messenger service. This service is operated in the EU and the EEA by WhatsApp Ireland Limited, Attn: Privacy Policy, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (“WhatsApp”), a company that is part of the Facebook group. The icon on our pages is inactive; you only see the mobile phone number that you can use to contact us on WhatsApp.

The offer to contact you via WhatsApp contained on our website serves our legitimate interest in marketing, customer loyalty and customer service (Art. 6 para. 1 letter f DSGVO). You are free to decide whether you want to send us messages via WhatsApp. You will only use WhatsApp based on the consent you give WhatsApp (Article 6 (1) (a) GDPR). We then only process the content of the messages that you send to us, as well as your associated mobile phone number and your name. In addition to the legitimate interests mentioned above, this exchange with you via WhatsApp also serves to initiate or carry out transactions with you (Art. 6 para. 1 letter b GDPR).

We receive a statistical evaluation from WhatsApp to measure interaction with us. All interactions with us are automatically available to the service.

When you use the service, WhatsApp collects data about you, your account, your messages, network, usage (in particular of payment services), log information, device and connection data, location information. Cookies are also installed on your device.

You can delete or manage your personal information on WhatsApp yourself at any time by adjusting the service settings, changing your profile information, or deleting your WhatsApp account. For more information, see: https://www.whatsapp.com/legal/#privacy-policy-managing-and-deleting-your-information.

Data transmission to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here:
https://www.whatsapp.com/legal/business-data-transfer-addendum.

We have set up our WhatsApp accounts so that there is no automatic data reconciliation with the address book on the smartphones in use.

We have concluded an order processing contract (AVV) with the above-mentioned provider.

‍

FACEBOOK

We have a Facebook profile. The provider of this service is Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (hereinafter Meta). The collected data is
According to Meta, it is also transferred to the USA and other third countries.

‍

We have signed a joint processing agreement (Controller Addendum) with Meta. This agreement determines which data processing operations we or Meta are responsible for when you visit our Facebook page. You can view this agreement at the following link:
https://www.facebook.com/legal/terms/page_controller_addendum.

You can adjust your advertising settings independently in your user account. To do so, click on the following link and log in:
https://www.facebook.com/settings?tab=ads.

Data transmission to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here:
https://www.facebook.com/legal/EU_data_transfer_addendum and
https://de-de.facebook.com/help/566994660333381.

For details, see Facebook's privacy policy:
https://www.facebook.com/about/privacy/.

INSTAGRAM

We have an Instagram profile. The provider of this service is Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

‍

Data transmission to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here:
https://www.facebook.com/legal/EU_data_transfer_addendum,
https://help.instagram.com/519522125107875 and
https://de-de.facebook.com/help/566994660333381.

Details on how they handle your personal data can be found in Instagram's privacy policy:
https://help.instagram.com/519522125107875.

‍

TikTok

We have a profile on TikTok. The provider is TikTok Technology Limited, 10 Earlsfort Terrace, Dublin, D02 T380, Ireland. For details on how they handle your personal data, please see

TikTok privacy policy:

https://www.tiktok.com/legal/privacy-policy?lang=de.

‍

Data transmission to non-secure third countries is based on the EU Commission's standard contractual clauses. Details can be found here: https://www.tiktok.com/legal/privacy-policy?lang=de.

‍

‍

REGISTRATION WITH A CUSTOMER ACCOUNT AND ORDERS VIA OUR ONLINE SHOP

‍

1. ‍Description of data processing 
   Through our online shop, corporate customers can purchase goods from us as part of their commercial activity. To do this, you must register with a customer account. Personal data is collected and stored to create a customer account. The following data is transmitted to us and processed by us: company name, address, contact person, e-mail address, telephone number, VAT ID and a required password.
   
   After your registration, you will receive a confirmation email that your customer account has been activated. Without registering as a customer, you cannot order goods from our online shop. ‍
   ‍
2. Purpose and legal basis for data processing 
   The data is only processed if the customer registers with a customer account and orders goods via our online shop. The personal data collected during registration is used exclusively to create and maintain a customer account and to execute and process the purchase contract, not for other purposes. The data provided there is required to register with a customer account and/or process the contract with regard to ordered goods.
   
   Personal data is processed when registering with a customer account for the conclusion and processing and execution of the user contract and when ordering goods for the conclusion and processing and execution of the purchase contract. The legal basis for processing is Article 6 (1) (b) GDPR.
   

3. Storage period 
   If you register with a customer account, you have the option to request the deletion of the customer account at any time (contact under section I).
   
   We store personal data for the duration of the customer account. The data will then be deleted, provided that there are no legal storage obligations to the contrary or if you have expressly consented to the further use of your personal data.
   
   Information and data on individual orders that were placed more than three years ago will be blocked in the customer account and deleted no later than 10 years from the order date. You can give your consent to the display of data relating to orders placed longer than three years, but up to a maximum of 10 years, in the past.
   
   Your personal data will be deleted or blocked as soon as the purpose of storage no longer applies. Storage may also take place if this has been provided for by European or national legislators in EU regulations, laws or other regulations to which we are subject. The data will also be blocked or deleted when a storage period prescribed by the above standards expires, unless there is a need to continue storing the data for the conclusion or performance of a contract.
   

4. Objection option 
   You have the option to request the update or deletion of the data stored via your customer account at any time (contact under section I.).
   
   There are statutory storage obligations with regard to certain data for contract processing (e.g. for invoices, Section 147 (3) AO, “57 HGB); the data required for this purpose will be deleted after the legal storage obligation has expired. When ordering goods, the data is required to process the contract. You therefore have no right of withdrawal from data processing in this respect.
   

5. Transfer of personal data to service providers as part of the order, purpose and legal basis; possibility of objection 
   The personal data concerned will be kept confidential by us and will generally not be passed on to third parties, unless this is necessary to process the order or you have consented to data processing or we are required to do so by law.
   
   For our financial security, when ordering with payment on account, we ask commercial credit insurers whether they would insure the customer before delivery of the goods. For this purpose, we pass on the company name and address to companies that help us assess your creditworthiness (commercial credit insurer). The associated data processing serves the legitimate interest of minimizing payment default risks. We only receive a notification of the summarized results of commercial credit insurers without further details.
   
   This transfer of data is based on Art. 6 (1) (f) GDPR. We have a legitimate interest in financial security in the event that we make advance payments with the delivery of the goods. These companies only receive the data that is necessary to provide the respective service. You are required to handle your data confidentially. You can object to processing based on a legitimate interest at any time.
   
   To process your order, we also work with service providers who support us in whole or in part in the execution of concluded contracts. These are service providers who assist us in shipping the goods. We only transfer your personal data to these service providers for the purpose of delivering the goods to you, to the extent absolutely necessary in each case. These service providers are obliged to handle your data confidentially. In order to deliver the goods you have ordered, we will forward the name and delivery address you have provided to the shipping partner selected by us for the purpose of delivery, Art. 6 para. 1 lit. b GDPR.

‍

REGISTRATION FOR THE SENDINBLUE NEWSLETTER AND PRODUCT RECOMMENDATION VIA E-MAIL TO EXISTING CUSTOMERS

1. Sendinblue
   This website uses Sendinblue to send newsletters. The provider is Sendinblue GmbH, Köpenicker Straße 126, 10179 Berlin, Germany.
   
   Sendinblue is a service that, among other things, can be used to organize and analyze the sending of newsletters. The data you enter for the purpose of subscribing to the newsletter is stored on the servers of
   Sendinblue stored in Germany.
   
   Data analysis by Sendinblue
   With the help of Sendinblue, we are able to analyse our newsletter campaigns. For example, we can see whether a newsletter message has been opened and which links may have been clicked on. In this way, we can determine, among other things, which links were clicked on particularly often.
   We can also see whether certain previously defined actions were carried out after opening/clicking (conversion rate). For example, we can see whether you have made a purchase after clicking on the newsletter.
   
   Sendinblue also allows us to divide (“cluster”) newsletter recipients into different categories. Newsletter recipients can be divided, for example, according to age, gender or place of residence. In this way, newsletters can be better adapted to the respective target groups.
   
   If you do not want analysis from Sendinblue, you must unsubscribe from the newsletter. For this purpose, we provide a corresponding link in every newsletter message.
   
   For detailed information on Sendinblue's features, please see the following link:
   https://de.sendinblue.com/newsletter-software/.
   
   legal basis
   Data processing is based on your consent (Article 6 (1) (a) GDPR). You can withdraw this consent at any time. The lawfulness of data processing operations that have already been carried out
   remains unaffected by the withdrawal.
   
   Storage period
   The data you provide us with for the purpose of subscribing to the newsletter will be stored by us or the newsletter service provider until you unsubscribe from the newsletter and will be deleted from the newsletter distribution list after you unsubscribe from the newsletter. Data that we have stored for other purposes remains unaffected by this.
   
   After you unsubscribe from the newsletter distribution list, your e-mail address may be stored in a blacklist by us or the newsletter service provider, if this is necessary to prevent future mailings. The data from the blacklist is only used for this purpose and is not combined with other data. This serves both your interest and our interest in complying with legal requirements when sending newsletters (legitimate interest within the meaning of Article 6 (1) (f) GDPR). Storage in the blacklist is not limited in time. You can object to storage if your interests outweigh our legitimate interest.
   
   For more information, please see Sendinblue's privacy policy at: https://de.sendinblue.com/datenschutz-uebersicht/.
   
   Order processing
   We have concluded an order processing contract (AVV) to use the above service. This is a contract required by data protection law, which ensures that it only processes the personal data of our website visitors in accordance with our instructions and in compliance with the GDPR.
   ‍
2. Product recommendation
   If you buy goods or use services from us and have provided your e-mail address, we allow ourselves, within the scope of legal requirements, to send product recommendations for our own similar products, if we have notified you of this when concluding the contract and you have not objected to this.
   
   The personal data that we process is not passed on to third companies. The data is used exclusively to send the product recommendation.
   
   The legal basis for product recommendations as a result of a previous sale of products is Article 6 (1) (f) GDPR in conjunction with Section 7 (3) UWG.

‍

DATA SECURITY

When you visit our website, we use the common SSL (Secure Socket Layer) procedure in conjunction with the highest level of encryption supported by your browser. This is usually 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can tell whether an individual page of our website is transmitted in encrypted form by the closed display of the key or lock icon in the lower status bar of your browser.

We also use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties. Our security measures are constantly being improved in line with technological developments.

‍

Using SalesViewer^®-Technology:

On our website www.nironit.de With SalesViewer^®-Technology collected and stored company-related data for marketing, market research and optimization purposes. This analysis tool for evaluating company-related data is provided by SalesViewer^® GmbH, Huestrasse 30, 44787 Bochum. For this purpose, Javascript-based code is used, which is used to collect company-related data and use it accordingly. The data collected using this technology is encrypted using a non-recoverable one-way function (so-called hashing). The data is immediately pseudonymized and is not used to personally identify visitors to this website. The data stored as part of SalesViewer will be deleted as soon as they are no longer required for their intended purpose and the deletion does not conflict with any legal storage requirements. Data processing takes place on the basis of our legitimate interests (Art. 6 para. 1 lit. f DSGVO). You can object to the collection and storage of data at any time with effect for the future by clicking this link https://www.salesviewer.com/opt-out Click to register by SalesViewer^® to prevent this within this website in the future. An opt-out cookie for this website is stored on your device. If you delete your cookies in this browser, you must click on this link again The Salesviewer^® GmbH is based in Germany and guarantees 100% GDPR compliance. You can obtain this assurance at https://www.salesviewer.com/datenschutz view. With regard to data processing in connection with the use of SalesViewer technology, we have concluded an order processing agreement with SalesViewer GmbH.

‍

TIMELINESS AND AMENDMENT OF THIS PRIVACY POLICY

This privacy policy is currently valid and was last updated in June 2023. As a result of the further development of our website and offers, or as a result of changes in legal or regulatory requirements, it may be necessary to amend this privacy policy. You can access and print out the current privacy policy on the website at any time.

‍

‍