The body specified in the imprint is responsible for the data processing described below.
2. Usage data for statistical purposes
When you visit our websites, so-called usage data are temporarily evaluated as a log on our web server for statistical purposes in order to improve the quality of our websites. This record consists of
the name and address of the requested content;
the date and time of the query;
the amount of data transferred;
the access status (content transferred, content not found);
the description of the web browser used and the operating system;
the referral link indicating from which page you accessed ours;
the IP address of the requesting computer, which is shortened in such a way that a personal reference can no longer be established.
The aforementioned log files will be evaluated anonymously.
3. Storage of the IP address
In addition, we store IP addresses in anonymized form only.
4. Data security
We take technical and organizational measures to protect your data in the most comprehensive manner possible against unwanted access. We use an encryption procedure on our web pages. Your information is transmitted from your computer to our server and vice versa through the Internet using TLS encryption. You usually recognize this by the fact that the padlock symbol in the status bar of your browser is displayed as being locked and the address line begins with https://.
5. Required cookies
Cookies are small text files that can be stored and read on your terminal. A distinction is made between session cookies that are deleted as soon as you close your browser and permanent cookies that are stored beyond the individual session.
Some of these cookies contain only information about certain settings but cannot be traced back to individuals. They may also be necessary to enable user guidance, security, and implementation of the site.
We use these cookies on the basis of point (f) of Art. 6(1) first sentence GDPR and in the interest of optimizing or enabling user guidance and adapting the display of our website.
This website uses the Borlabs Cookie plugin (Borlabs – Benjamin A. Bornschein, Georg-Wilhelm-Str. 17, 21107 Hamburg, Germany, https://de.borlabs.io/)), which sets a technically necessary cookie (Borlabs Cookie) to store your cookie consent.
Borlabs Cookie does not process any personal data.
The Borlabs Cookie stores your consent you gave upon accessing the website to the anonymous evaluation of your data. If you wish to withdraw these consents, simply delete the cookie in your browser. When you re-access/reload the website, you will be asked for your cookie consent again.
You can change the settings here at any time: [borlabs-cookie type=”btn-cookie-preference” title=”” element=”link”/].
6. Analysis tools
We use the web analysis tool “Google Analytics“ to tailor our websites to our requirements. Google Analytics creates usage profiles based on pseudonyms. For this purpose, permanent cookies are stored on your device and retrieved by us. This will enable us to recognize and count returning visitors as such.
Within the framework of Google Analytics, Google Ireland Limited and Google LLC (USA) support us as processor pursuant to Art. 28 GDPR. Data processing can therefore also take place outside the EU or the EEA. With regard to Google LLC, an appropriate level of data protection cannot be assumed due to the processing in the USA. There is a risk that authorities will access the data for security and monitoring purposes without you being informed or having the right to appeal. Please take this into account if you decide to give your consent to our use of Google Analytics.
The data processing is based on your consent in accordance with point (a) of Art. 6(1) first sentence GDPR or Section 15(3) sentence 1 Telemedia Act (TMG), if you have given your consent through our banner. The transfer to a third country is based on point (a) of Art. 49(1) GDPR.
You have the right to withdraw your consent at any time. Please follow this link and adjust your settings accordingly through our banner: here.
7. Integration of other technical third-party content and functions
We use the technical functions and content listed below, provided by third parties, to display our websites.
A visit to our pages leads to the reloading of contents of third parties who provide these functions and contents. As a result, the third-party provider receives the information that you have accessed our site as well as the usage data technically required in this context.
Any further processing of data by the third-party provider is beyond our control.
The data processing is based on your consent in accordance with point (a) of Art. 6(1) first sentence GDPR if you have given your consent beforehand through our banner solution.
Please note that the use of third-party content and features may result in your data being processed outside the EU or EEA. In some countries, there is a risk that authorities will access the data for security and monitoring purposes without you being informed or having the right to appeal. If we use providers in unsafe third countries and you consent, the transfer to an unsafe third country is based on point (a) of Art. 49(1) GDPR.
8. Contacting us
You can contact us using our contact forms, service request forms or registration forms. In order to use our forms, you need to first provide the information marked as mandatory.
We use this data on the basis of point (f) of Art. 6(1) first sentence GDPR to answer your request.
In addition, you can decide for yourself whether you want to provide us with further information. That information is voluntary, not mandatory. We process your voluntary data on the basis of your consent in accordance with point (a) of Art. 6(1) first sentence GDPR.
Your data will be processed only to answer your request or to enable you to register for our offers and events. We will delete your data provided that it is no longer required and there are no legal retention obligations to the contrary.
To the extent that your data transmitted through the contact form is processed on the basis of point (f) Art. 6(1) first sentence GDPR, you have the right to object to the processing at any time. You also have the right to withdraw your consent to the processing of the voluntary data at any time. To do so, please contact email@example.com.
9. Google reCAPTCHA
To protect our web forms from automated requests, we use a so-called third-party Captcha. As part of the Captcha feature, you may be asked to solve tasks or click checkboxes. The user inputs made in this context and possibly also the mouse movements are used to estimate whether the inputs originate from a human or an automated program.
Since the feature is provided by a third-party provider, displaying the Captcha will cause third-party content to reload. As a result, the third-party provider is informed that you have accessed our site and receives the usage data technically required in this context. Any further processing of data by the third-party provider is, as a rule, beyond our control.
Embedding is based on point (f) of Art. 6(1) first sentence GDPR and is in the interest of protection against spam and abuse.
Email Newsletter/News via Messenger
You can subscribe to a newsletter on our website. Please note that we require your email address as mandatory information for you to subscribe to the newsletter. All other information, such as salutation, title, first name and surname, is optional and voluntary, but will help us to address you better and more personally.
The newsletter will only be sent if you give us your express consent in accordance with point (a) of Art. 6(1) first sentence GDPR. After placing your order on our websites, you will receive a confirmation email to the email address you provided (so-called double opt-in). You have the right to withdraw your consent at any time. An uncomplicated way to withdraw your consent is, for example, to use the unsubscribe link provided in every newsletter.
As part of our newsletter registration, we store additional data in addition to the data mentioned above to the extent that this is necessary for us to be able to prove that you have subscribed to our newsletter. This may include the storage of the complete IP address at the time of the subscription to the newsletter or its confirmation, as well as a copy of the confirmation email sent by us. This processing of data is based on point (f) of Art. 6(1) first sentence GDPR and is done in the interest of being able to account for the legality of the sending of the newsletter.
Our email newsletters are sent through the technical service provider CleverReach GmbH & Co. KG, Mühlenstr. 43, 26180 Rastede (“CleverReach”). CleverReach is a service that can be used to organize and analyze newsletter mailings. The data you enter for the purpose of receiving the newsletter (e.g. email address) will be stored on CleverReach’s servers in Germany or Ireland.
Our newsletters sent with CleverReach enable us to analyze the behavior of newsletter subscribers. This analysis allows us to find out, among other things, how many recipients have opened the newsletter message and how often which link was clicked in the newsletter. So-called conversion tracking also allows to determine whether a predefined action (e.g. purchase of a product on our website) has taken place after clicking on the link in the newsletter.
We have entered into a contract with CleverReach for data processing and fully implement the strict requirements issued by the German data protection authorities when using CleverReach. If you wish to object to the data analysis for statistical evaluation purposes, you must unsubscribe from the newsletter.
If you register on our website for our Telegram Newsletter to receive information about MASTERRIND as well as promotional offers and events of MASTERRIND, we will use the personal data you provide in this context exclusively for sending the Telegram Newsletter and, where applicable, to contact you through the chat function if you explicitly requested us to do so. The delivery by means of the messenger usually takes place no more than twice a week.
The subscription to our Telegram Newsletter requires a so-called double-opt-in procedure. This means that you can only receive the newsletter after you have saved our telephone number in your phone and sent the word “start“ to us. The legal basis for the personal data processing is your consent to receive the Telegram Newsletter in accordance with point (a) of Art. 6(1) GDPR.
If you register for the MASTERRIND newsletter via Telegram, Telegram will replace your telephone number by an ID.
MASTERRIND is in a position to view at any time this ID, the time stamp of the registration as well as the user name you set up with Telegram (this can be a real or nickname) in the user interface at MessengerPeople (user interface for messenger marketing – see more below).
We do not share your telegram ID and it is not visible to other subscribers of our service. They can also not send you telegram messages because our messages are not sent within a messaging group, but to a broadcast list.
As a user, you can discontinue the newsletter subscription at any time by sending the “stop“ command. The chat history is still visible for one year after the newsletter subscription has been discontinued, during which time you will be listed as disabled and will no longer receive any messages. This period is used for documentation purposes, since, theoretically, orders or contracts can also be processed through the chat.
You can withdraw your consent to the collection and storage of your data and their use for sending the Telegram Newsletter at any time without giving reasons. This is possible at any time by unsubscribing as follows:
If you want to completely terminate the service and delete all your data, send a message stating “Delete all data”.
Anonymized/aggregated statistics are collected within the messenger platform.
Telegram, in turn, collects data independently, and you can learn more directly from Telegram about the purpose, scope, processing and use of your personal data, your rights and options to adjust settings to protect your privacy.
11. Candidate management
You have the opportunity to apply for the positions we advertise on the website.
In order to be able to consider your application, at least the following information is required:
Name and address
We process your data exclusively for the purpose of selecting applicants in accordance with Section 26 (1) BDSG. There will be no data processing for any other purpose.
In addition, you can decide for yourself whether you would like to provide us with further information, such as your mobile phone number, a picture, cover letter, etc., for a better assessment of your application or for ease of communication. That information is voluntary and is not imperative for your application. If you include voluntary information in your application, you declare your consent that we process this data exclusively for the purpose of selecting applicants. You can withdraw your consent at any time with effect for the future. Please send your withdrawal notice to the office specified in the imprint.
Your data will be kept strictly confidential. If your application is unsuccessful, your documents will be deleted no later than 180 days after filling the position. The legal basis for this processing is point (f) of Art. 6(1) first sentence GDPR in the legitimate interest of defending against any legal claims.
In the event that your application is to be taken into account also for other or future job advertisements, this will only be done on the basis of your consent. We will then process your data on the basis of point (a) Art. 6(1) first sentence GDPR and delete your application after two years. You can withdraw your consent at any time with effect for the future. Please send the withdrawal of your consent to firstname.lastname@example.org.
12. Map Services
We embed map services on our websites that are not stored on our servers. A visit to our pages with embedded map services results in content being reloaded by the third-party provider who provides the map services. As a result, the third-party provider is informed that you have accessed our site and receives the usage data technically required in this context.
Any further processing of data by the third-party provider is beyond our control.
Embedding is based on point (f) of Art. 6(1) first sentence GDPR and is in the interest of enabling you to use map services.
13. Embedded Videos
We embed videos on our websites that are not stored on our servers. A visit to our pages with embedded videos results in content being reloaded by the third-party provider who provides the videos. As a result, the third-party provider is informed that you have accessed our site and receives the usage data technically required in this context.
Any further processing of data by the third-party provider is beyond our control. However, when embedding the videos, we made sure to enable the privacy-enhanced mode offered by the third-party provider. The privacy-enhanced mode means that the third party does not set cookies.
Embedding is based on point (f) of Art. 6(1) first sentence GDPR and is in the interest of making our site as appealing and informative as possible.
14. Social Media
We do not use social media plugins on our website. They are only links.
15. Links to third-party websites
16. Storage period
Unless we have already informed you in detail about the storage period, we delete personal data if it is no longer necessary for the aforementioned processing purposes and if no statutory retention obligations preclude deletion.
17. Other processors
In the context of contract data processing in accordance with Art. 28 GDPR, we pass on your data to service providers who support us in the operation of our websites and related processes. These are hosting service providers, for example. Our service providers are strictly bound by our instructions and have been put under the respective contractual obligation.
When processing your personal data, the GDPR grants you certain rights as a data subject:
Right of access (Art. 15 GDPR)
You have the right to obtain confirmation as to whether personal data concerning you are being processed; if this is the case, you have the right to access the personal data and the information listed in detail in Art. 15 GDPR.
Right to rectification (Art. 16 GDPR)
You have the right to obtain without undue delay the rectification of inaccurate personal data concerning you and, if necessary, the completion of incomplete data.
Right to erasure (Art. 17 GDPR)
You have the right to obtain the erasure of personal data concerning you without undue delay where one of the grounds listed in detail in Article 17 GDPR applies.
Right to restriction of processing (Art. 18 GDPR)
You have the right to obtain restriction of processing if one of the conditions listed in Art. 18 GDPR is met, e.g. if you have objected to the processing, for the duration of the verification by the controller.
Right to portability (Art. 20 GDPR)
In certain cases, which are listed in detail in Art. 20 GDPR, you have the right to receive the personal data concerning you in a structured, commonly used and machine-readable format or to request the transmission of this data to a third party.
Right to object (Art. 21 GDPR)
If data is collected on the basis of point (f) of Art. 6(1) first sentence GDPR (data processing for the protection of legitimate interests) or on the basis of point (e) of Art. 6(1) first sentence GDPR (data processing for the protection of the public interest or in the exercise of official authority), you have the right to object, on grounds relating to your particular situation, at any time to the processing. We will then no longer process the personal data, unless there are demonstrably compelling legitimate grounds for the processing that override your interests, rights and freedoms, or the processing serves to establish, exercise or defend legal claims.
Right to lodge a complaint with a supervisory authority (Art. 77 GDPR)
In accordance with Art. 77 GDPR, you have the right to lodge a complaint with a supervisory authority if you believe that the processing of the data concerning you infringes data protection regulations. The right to lodge a complaint may be asserted in particular with a supervisory authority in the Member State of your habitual residence, place of work or place of the alleged infringement.
19. Contact details of the data protection officer
Contact details of the data protection officer:
Our external data protection officer will be happy to provide you with information on data privacy at the following contact details:
datenschutz nord GmbH
If you contact our data protection officer, please also refer to the controller specified in the imprint.
Stand: Oktober 2020