Privacy policy

Thank you for visiting our website. It is very important to us that your personal information is protected and secure when you use our website. We would therefore like to take the opportunity here to inform you about what personal data we collect when you visit our website and for what purpose this data is used.

This privacy policy applies to the website of Wesemann International GmbH, which can be found under the domain www.wesemann-international.com and the various subdomains (“our website”).

Contact details of the controller and contact for data protection

Controller

for the processing of personal data within the meaning of the EU General Data Protection Regulation (GDPR)

Wesemann International GmbH
Sigmannser Weg 31
88239 Wangen im Allgäu
Germany
Phone: +49 7522 999810
Email address: info@wesemann-international.com

Data protection officer

HUBIT Datenschutz GmbH & Co. KG
Lise-Meitner-Str. 2
28359 Bremen
Email address: info@hubit.de
Website: www.hubit-datenschutz.de
Data protection phone: +49 421 33114300

General information on data protection

This privacy policy meets the legal requirements for transparency when processing personal data. This is all information relating to an identified or identifiable natural person. This includes, for example, information such as your name, age, address, phone number, date of birth, email address, IP address or user behaviour when visiting a website. Information that cannot be linked to your person (or only with a disproportionate effort), for example through anonymisation, does not constitute personal data.

Personal data may only ever be processed (for example, collected, retrieved, used, stored or transmitted) when there is a legal basis and defined purpose.

Stored personal data is deleted once the purpose of processing has been achieved and there are no legitimate grounds for further retaining the data. We will inform you about the specific storage periods and criteria for storage in the individual processing operations. Irrespective of this, we store your personal data in individual cases for the assertion, exercise or defence of legal claims and where statutory retention obligations exist.

Transfer of data

We only pass on your personal data that we process on our website to third parties if this is required to fulfil the purposes and is covered by the legal basis (e.g. consent or protection of legitimate interests) in individual cases. Moreover, we pass on personal data to third parties in individual cases if this is for the assertion, exercise or defence of legal claims. Potential recipients may be, for example, law enforcement agencies, lawyers, auditors, courts, etc.

Insofar as we use service providers for the operation of our website who process personal data on our behalf as part of commissioned data processing in accordance with Art. 28 GDPR, they may be recipients of your personal data.

You can find more detailed information on the use of processors and on web services in the overview of the individual processing operations.

Use of cookies

Cookies are small text files that are sent by us to the browser of your device and stored there when you visit our website.

As an alternative to the use of cookies, information can also be stored in the local storage of your browser. Certain features of our website cannot be offered without the use of cookies or local storage (technically required cookies). Other cookies, on the other hand, enable us to carry out various analysis so that, for example, we are able to recognise the browser you are using when you visit our website again and to transmit various information to us (non-essential cookies).

Cookies help us make our website more user-friendly and effective for you, for example by tracking your use of our website and determining your preferred settings (e.g. country and language settings). If third parties process information via cookies, they collect the information directly via your browser. Cookies do not harm your device. They cannot execute programs and do not contain viruses.

We provide information about the relevant services for which we use cookies in the individual processing operations. Detailed information on the cookies used can be found in the cookie settings or in the Consent Manager of this website.

Exercising data subject rights

Information on data subject rights

Every data subject can assert their rights (data subject rights) in relation to the controller. This can be done via email, in the post or via a form provided. It is also possible to make telephone enquiries. However, telephone enquiries are only accepted and not answered over the phone. The controller shall select the medium (post, email, other media) and send the data subject the answer to their request via this medium. Answers to requests concerning data subject rights are provided free of charge. A fee may be charged in the case of excessive exercise of data subject rights (e.g. high volume of requests). The answer shall be provided within the statutory period of one month. This period may be extended in exceptional circumstances (e.g. high number of requests or high level of complexity of the request). Reasons must be provided for extending this statutory period. The data subject rights are listed below. For the sake of clarity, we have set out the data subject rights in bullet points. After each item, you will find a link to detailed explanations (on the HUBIT data protection website).

The data subject must authenticate themselves to the controller to ensure that they are authorised to exercise the data subject rights.

The HUBIT data protection website contains a form you can use to exercise your data subject rights with us. Form for exercising data subject rights

How will my data be processed in detail?

We will provide you with information below on the individual processing operations, the scope and purpose of data processing, the legal basis, the duty to provide your data and the respective retention period. No automated individual decision-making, including profiling, is carried out.

Provision of the website

Type and scope of processing

When you access and use our website, we collect the personal data that your browser automatically transmits to our server. The following information is temporarily stored in a so-called log file:

IP address of the computer making the request
date and time of access
name and URL of the retrieved file
website from which the access is made (referrer URL)
browser used and, where applicable, your computer’s operating system, and the name of your access provider

Our website is not hosted by us, but by a service provider who processes the aforementioned data on our behalf in accordance with Art. 28 GDPR.

Purpose and legal basis

Processing is carried out for the purpose of our overriding legitimate interest in displaying our website and ensuring security and stability on the basis of Art. 6 (1) f) GDPR. Recording the data and storing it in log files is strictly necessary for the operation of the website. There is no right to object to the processing due to the exception under Art. 21 (1) GDPR. Insofar as further storage of the log files is required by law, processing is carried out on the basis of Art. 6 (1) c) GDPR. There is no legal or contractual obligation to provide the data, however it is technically impossible to access our website without providing the data.

Retention period

The aforementioned data will be stored for the duration of the display of the website [and for technical reasons for a maximum of [7 days] thereafter].

Contact form

Type and scope of processing

Our website has a form you can use to contact us. The information collected from mandatory fields is required in order to process the request. You may also voluntarily provide additional information which you believe to be necessary for processing the contact request.

Your personal data will not be passed on to third parties when you use the contact form.

Purpose and legal basis

When you use our contact form, your data is processed for the purpose of communication and processing your request on the basis of your consent in accordance with Art. 6 (1) a) GDPR. Insofar as your request relates to an existing contractual relationship with us, processing is carried out for the purpose of contract performance on the basis of Art. 6 (1) b) GDPR. There is no legal or contractual obligation to provide your data, however it is not possible to process your request unless you provide the information requested in the mandatory fields. If you would not like to provide this data, please use a different way to contact us.

Retention period

If you use the contact form on the basis of your consent, we will store the collected data of each request for the period of three years, starting from completion of your request or until you revoke your consent.

[If you use the contact form in the context of a contractual relationship, we will store the collected data of each request for the period of [three years] from the end of the contractual relationship.]

Contact form for applicants

Type and scope of processing

We collect and process applicants’ personal data. Data may also be processed electronically, for example when applicants submit application documents by email or via an online form on our website. Our website allows you to submit applications for open positions by email.

Your data will also only be stored in an applicant database beyond the current application process if you have given us your separate consent to do so.

Purpose and legal basis

Your data will be processed in connection with your application for the purpose of processing your application and deciding on the establishment of an employment relationship on the basis of Section 26 BDSG (German Federal Data Protection Act). If your application documents are passed on to third parties, in particular to companies affiliated with us, and if your data is stored beyond the current application process, your data will be processed on the basis of Art. 6 (1) (1) a) GDPR. There is no legal or contractual obligation to provide your data, however it is not possible to process your application unless you provide this information.

Retention period

We will store the collected data for the period of six months from the data that the position is filled.

Presence on social media

We have so-called fan pages or accounts or channels on the social networking sites listed below in order to provide you with information and offers via these platforms and to provide you with other ways to get in contact with us and find out about our offers. We will provide information below about what data we or the relevant social networking site process from you when you access and use our fan pages/accounts.

Data we process from you

If you would like to contact us via Messenger or direct message via the relevant social networking site, we usually process your user name which you use to contact us and may store any other data you share insofar as this is required to process/answer your request.

The legal basis is Art. 6 (1) (1) f) GDPR (processing is required for the purpose of the controller’s legitimate interests).

(Statistical) usage data that we receive from the social networking sites

We receive automated statistics regarding our accounts via insights features. The statistics include but are not limited to the total number of page views, likes, information on page activity and post interactions, reach, video views and information on the proportion of men/women among our fans/followers.

The statistics only contain aggregated data that cannot be linked to individuals. We cannot identify you in this way.

What data the social networking sites process from you

You do not have to be signed up to the relevant social networking site to view the content of our fan pages or accounts, and therefore it is not necessary to have a user account for the relevant social networking site.

However, please note that when you access the relevant social networking site, they also collect and store data from web visitors who do not have a user account (e.g. technical data to be able to display their website to you) and use cookies and similar technology over which we have no influence.

Please refer to the relevant social networking site’s privacy policy for more information on this (see the relevant links above)

If you want to interact with the content on our fan pages/accounts, e.g. comment, share or like our posts and/or would like to contact us via Messenger, you must first of all sign up to the relevant social networking site and provide your personal data.

We have no influence over how the social networking sites process data when you use them. To the best of our knowledge, your data is stored and processed in particular in connection with the provision of the services of the relevant social networking site, as well as for the analysis of user behaviour (using cookies, pixels/web beacons and similar technology) on the basis of which advertising tailored to your interests is displayed both on and outside the relevant social networking site. It cannot be ruled out that your data will be also stored by the social networking sites outside the EU/EEA and passed on to third parties.

The social networking sites’ privacy policies/cookie policies contain information on the exact scope and purposes of personal data processing, the retention periods/deletion and guidelines on the use of cookies and similar technology within the context of signing up to and using social networking sites. They also provide information on your rights, including your right to object.

LinkedIn website

LinkedIn is a social networking site of LinkedIn Inc. based in Sunnyvale, California, USA, which enables users to create private and professional profiles of natural persons and company profiles. Users can maintain their existing contacts and create new ones on the site.

Companies and other organisations can create profiles and upload photos and other company information to showcase their company and recruit staff. Other LinkedIn users have access to this information and can write their own articles and share this content with others. The platform is designed for professional discussions on specialised topics among people with shared career interests.

When you use or visit the site, LinkedIn automatically collects data from users and visitors, such as user name, job title and IP address. It uses various tracking technology for this. LinkedIn uses the data collected in this way to provide users with information, offers and recommendations.

We only collect your data via our company profile to enable potential communication and interaction with us. Data collected usually includes your name, message content, comment content as well as profile information you have made “publicly” available.

Your personal data is processed for the aforementioned purposes on the basis of our legitimate commercial and communicative interest in providing an information and communication channel in accordance with Art. 6 (1) f) GDPR. If, as a user, you have given your consent to data processing to the respective provider of the social networking site, the legal basis for the processing is Art. 6 (1) a) and Art. 7 GDPR.

Due to the fact that the actual data processing is carried out by the provider of the social networking site, our access options to your data are limited. Only the provider of the social networking site is authorised to have full access to your data. As a result, only the provider can directly take and implement appropriate measures to fulfil your user rights (request for information, request for deletion, objection, etc.). The most effective way to exercise corresponding rights is therefore directly with the respective provider.

Together with LinkedIn, we are responsible for the personal content of our company profile. Data subject rights can be exercised with LinkedIn Inc. and with us.

We do not make decisions with regard to data collected on the LinkedIn site using tracking technology.

You can find more information about LinkedIn at: https://about.linkedin.com.

You can find more information about LinkedIn’s privacy policy at: https://about.linkedin.com.

You can find more information about the retention period/deletion and guidelines on the use of cookies and similar technology when signing up to and using LinkedIn at: https://de.linkedin.com/legal/cookie-policy?trk=homepage- basic_footer-cookie-policy.

XING website

XING is a social networking site operated by New Work SE based in Hamburg, Germany, which enables users to create private and professional profiles of natural persons and company profiles. Users can maintain their existing contacts and create new ones on the site. Companies and other organisations can create profiles and upload photos and other company information to showcase their company and recruit staff. Other XING users have access to this information and can write their own articles and share this content with others. The platform is designed for professional discussions on specialised topics among people with shared career interests.

When you use or visit the site, XING or third parties used by XING automatically collect data from users and visitors, such as user name, job title and IP address. It uses various tracking technology for this. XING uses the data collected in this way to provide users with information, offers and recommendations.

Together with XING, we are responsible for the personal content of our company profile. Data subject rights can be exercised with New Work SE and with us.

We do not make decisions with regard to data collected on the XING site using tracking technology.

You can find more information about XING at: https://corporate.xing.com/de/unternehmen.

You can find more information about XING’s privacy policy at: https://privacy.xing.com/de/datenschutzerklaerung.

Third-party providers

Below you will find the third-party providers that are integrated on our website.

Matterport

Type and scope of processing

We use Matterport to display 3D models of properties on our website and enable our users to take virtual tours. Matterport is a service of Matterport, Inc., which acts as a content delivery network (CDN) on our website.

A CDN helps provide the contents of the 3D models. When you access this content, you are establishing a connection to servers at Matterport, Inc., Matterport, Inc. 352 E. Java Dr. Sunnyvale, CA 94089, United States, where your IP address and, if applicable, browser data such as your user agent are transmitted. This data is only processed for the aforementioned purposes and to maintain the security and functionality of Matterport.

Purpose and legal basis

The use of Matterport is based on your consent pursuant to Art. 6 (1) a) DGPR and Section 25 (1) TDDDG (Telecommunications Digital Services Data Protection Act).

Retention period

We have no influence over the specific retention period of the processed data. This is determined by Matterport, Inc. You can find further information in Matterport’s privacy policy: https://matterport.com/de/node/44.

OpenStreetMap

Type and scope of processing

We use the map service OpenStreetMap to create directions. OpenStreetMap is an open source project of the OpenStreetMap Foundation, which displays a map on our website.

When you access this content, you are establishing a connection to servers at FOSSGIS e.V., Bundesallee 23, 10717 Berlin, Deutschland, where your IP address and, if applicable, browser data such as your user agent are transmitted. This data is only processed for the aforementioned purposes and to maintain the security and functionality of OpenStreetMap.

Purpose and legal basis

The use of OpenStreetMap is based on our legitimate interest pursuant to Art. 6 (1) f) GDPR, i.e. our interest in making it easier for you to reach locations listed on the website.

Retention period

We have no influence over the specific retention period of the processed data. This is determined by FOSSGIS e.V. You can find further information in OpenStreetMap’s privacy policy: https://www.fossgis.de/datenschutzerklärung/.

YouTube NoCookie

Type and scope of processing

We have integrated YouTube NoCookie on our website. YouTube NoCookie is a component of the video platform Youtube, LLC, on which users can upload content, share it across the internet and receive detailed statistics.

YouTube NoCookie enables us to integrate content from the platform into our website.

YouTube NoCookie uses cookies and other browser technology to evaluate user behaviour, identify returning users and create user profiles. One way this information is used is to analyse the activity of the content listened to and create reports. If a user is registered with YouTube, LLC, YouTube NoCookie can assign the videos played to the profile.

When you access this content, you are establishing a connection to servers at YouTube, LLC, Google Ireland Limited, Gordon House, Barrow Street Dublin 4, Ireland, where your IP address and, if applicable, browser data such as your user agent are transmitted.

Purpose and legal basis

We intend to transmit personal data to third countries outside the European Economic Area, in particular to the USA. Data is transmitted to the USA pursuant to Art. 45 (1) GDPR on the basis of the European Commission's adequacy decision. The American companies involved and/or their American subcontractors are certified under the EU-U.S. Data Privacy Framework (EU-U.S. DPF).

In cases where there is no adequacy decision made by the European Commission (including American companies not certified under the EU-U.S. DPF), we have agreed other suitable guarantees with the recipients of the data within the meaning of Art. 44 et seq. GDPR. Unless otherwise specified, these are the EU Commission’s standard contractual clauses in accordance with the Implementing Decision (EU) 2021/914 of 4 June 2021. You can find a copy of these standard contractual clauses at https://eur-lex.europa.eu/legal- content/DE/TXT/HTML/?uri=CELEX:32021D0914&from=EN.

In addition, prior to such a third country transfer, we will obtain your consent in accordance with Art. 49 (1) (1) a) GDPR, which you give via the consent in the Consent Manager (or other forms, registrations, etc.). Please note that data transfers to third countries may involve risks that are not fully known (e.g., data processing by security authorities in the third country, the exact scope and consequences for you of which we do not know, cannot influence, and which you may not be informed about).

Retention period

We have no influence over the specific retention period of the processed data. This is determined by YouTube, LLC. You can find further information in Youtube NoCookie's privacy policy: https://policies.google.com/privacy.