Privacy
Notice
Data
Privacy
1. Introduction
We are pleased that you are visiting our website. The protection and security of your personal information when using our website is very important to us. We would therefore like to inform you at this point about which of your personal data we collect when you visit our website and for what purposes it is used.
This privacy policy applies to the website of ZARM Technik AG, which can be accessed under the domain zarm-technik.biz and the various subdomains.
2. Controller
for the processing of personal data within the meaning of the EU General Data Protection Regulation (GDPR):
ZARM Technik AG
Am Fallturm 2
28359 Bremen
3. Data Protection Officer
-external data protection officer-
HUBIT Datenschutz GmbH & Co. KG
Email: info@hubit.de
Website: www.hubit.de
Privacy Phone: +49 0421-33114300
4. General information on data protection
Data processing during website visits
When a website is accessed, a large amount of data - including personal data - is automatically transmitted via the Internet. This is necessary from a technical point of view so that the website call works at all and also to be able to provide you with the best possible result.
For example, whenever you visit a website, an image is retrieved from a server, an external plugin (or script) is loaded, a video is streamed or one of the many other transmission options is used, data is sent from your computer to the server from which you retrieve it. When you visit a website, your browser (e.g. Firefox, Internet Explorer, Edge, Opera, Safari) automatically sends certain information from your system. These data are, for example:
- Website from which the website or a file (image, script, video) is accessed or in which the file is integrated (referer)
- Operating system
- Screen resolution
- Keyboard layout (language)
- IP address from which the website or file was accessed
- Name of the accessed website or file
- Time stamp (date and time) of the call
- Name of the browser and its version
- Amount of data transferred
- Access status (file transferred, error code)
This data is logged by each server. The logging takes place, for example, for
- Maintenance and verification of IT security (e.g. to detect hacker attacks) and IT operations
- statistical evaluation (about the use of the website)
- Improvement of the website
- Customized output of the website or files so that they can be displayed optimally on your device
No pseudonymization or anonymization is used for security protocols, as then no conclusions about potential attackers would be possible. As a rule, the evaluation of the data for other purposes is anonymous and no profiling is carried out. Further information can be found in the further course of this privacy policy.
Data subject
The "data subject" (also referred to as the "data subject") is the individual whose personal data is collected and processed. In the following, the "data subject" is also referred to as "website visitor" or "user".
Information on the rights of data subjects
Each data subject can assert his rights (rights of data subjects) against the controller. This can be done as an email, by post or a form provided. Telephone inquiries are also possible. However, telephone inquiries are only accepted and not answered on the phone. The controller selects the medium (post, email, other media) and sends the data subject the answer to his request via this medium. Responses to inquiries regarding the rights of data subjects are free of charge. In the event of excessive exercise (e.g. strong accumulation) of the rights of data subjects, a fee may be charged. The answer will be given within the statutory period of one month. The deadline may be extended in exceptional cases (e.g. high number of requests or high complexity of the request). The extension of the time limit shall be justified. The rights of data subjects are listed below. For the sake of clarity, we have noted the rights of data subjects in bullet points. Behind each list you will find a link to detailed explanations (on the pages of HUBIT-Datenschutz).
- Right to information
- Right to rectification
- Right to erasure
- Restriction of processing
- Right to data portability
- Revocation of consent
- Right to object
- Right to lodge a complaint
The data subject must authenticate himself to the controller in order to ensure that he or she is legitimised to exercise the rights of the data subject.
On the page of HUBIT-Datenschutz you will find a form via which you can exercise your rights as a data subject with us: Form for exercising data subject rights.
5. Cookies
We use cookies.
Description of cookies:
| Domain | Name | Description | Storage duration |
|---|---|---|---|
| www.zarm-technik.de | _sp_id.f755 | simplybusiness.co.uk | ca. 1 Year |
| www.zarm-technik.de | _sp_ses.f755 | simplybusiness.co.uk | 29 Minutes |
| www.zarm-technik.de | dm_last_page_view | Not available | ca. 12 Months |
| www.zarm-technik.de | dm_last_visit | Not available | ca. 12 Months |
| www.zarm-technik.de | dm_this_page_view | Not available | ca. 12 Months |
| www.zarm-technik.de | dm_timezone_offset | Not available | ca. 15 Days |
| www.zarm-technik.de | dm_total_visits | Not available | ca. 12 Months |
6. Forms
Contact
Type and scope of processing
On our website we offer you to contact us via a form provided. The information collected via mandatory fields is required to process the request. In addition, you can voluntarily provide additional information that you believe is necessary for processing the contact request.
When using the contact form, your personal data will not be passed on to third parties.
Purpose and legal basis
The processing of your data by using our contact form takes place for the purpose of communicating and processing your request on the basis of your consent in accordance with Art. 6 para. 1 lit. a GDPR. If your request relates to an existing contractual relationship with us, the processing for the purpose of fulfilling the contract is based on Art. 6 para. 1 lit. b GDPR. There is no legal or contractual obligation to provide your data, but it is not possible to process your request without providing the information in the mandatory fields. If you do not wish to provide this data, please contact us by other means.
Storage period
If you use the contact form based on your consent, we store the collected data of each request until the purpose of its collection has been achieved or until the revocation of your consent.
Contact form for applicants
Type and scope of processing
We collect and process the personal data of applicants. Corresponding data processing may also take place electronically, for example if applicants submit application documents to us by e-mail or via a web form on our website. On our website, we offer you the opportunity to send us applications for advertised vacancies by e-mail.
Your data will also only be stored in an applicant database beyond the current application procedure if you have given us your separate consent.
Purpose and legal basis
The processing of your data in connection with your application takes place for the purpose of processing your application and deciding on the establishment of an employment relationship on the basis of § 26 BDSG. If your application documents are passed on to third parties, in particular to companies affiliated with us, as well as your data is stored beyond the current application procedure, your data will be processed on the basis of Art. 6 para. 1 sentence 1 lit. a GDPR. There is no legal or contractual obligation to provide your data, but it is not possible to process your application without providing the information.
Storage period
We store the collected data for a period of six months from the date of filling the position.
7. Third Party Providers
In the following, data connections to external servers are described, where personal data may be processed.
AWS CloudFront:
Type and scope of processing
We use AWS CloudFront to properly provide the content of our website. AWS CloudFront is an Amazon Web Services, Inc. service that acts as the Content Delivery Network (CDN) on our website.
A CDN helps to deliver content from our online offering, especially files such as graphics or scripts, faster with the help of regionally or internationally distributed servers. When you access this content, you connect to Amazon Web Services, Inc. servers, , transmitting your IP address and, if applicable, browser data such as your user agent. This data will be processed exclusively for the above purposes and for the maintenance of the security and functionality of AWS CloudFront.
Purpose and legal basis
The use of the Content Delivery Network is based on our legitimate interests, i.e. interest in a secure and efficient provision and the optimization of our online offer in accordance with Art. 6 sec. 1 lit. f. GDPR.
Storage time
The actual storage time of the processed data is not influenced by us, but is determined by Amazon Web Services, Inc.. For more information, see the privacy policy for AWS CloudFront: https://aws.amazon.com/de/privacy/.
CDN Fonts:
Type and scope of processing
We use CDN Fonts to properly provide the content of our website. CDN Fonts is a Cloudfare, Inc. service that acts as the Content Delivery Network (CDN) on our website.
A CDN helps to deliver content from our online offering, especially files such as graphics or scripts, faster with the help of regionally or internationally distributed servers. When you access this content, you connect to Cloudfare, Inc. servers, transmitting your IP address and, if applicable, browser data such as your user agent. This data will be processed exclusively for the above purposes and for the maintenance of the security and functionality of Duda CDN.
Purpose and legal basis
The use of the Content Delivery Network is based on our legitimate interests, i.e. interest in a secure and efficient provision and the optimization of our online offer in accordance with Art. 6 sec. 1 lit. f. GDPR.
Storage time
The actual storage time of the processed data is not influenced by us, but is determined by Duda, Inc.. For more information, see the privacy policy for CDN Fonts: https://www.cdnfonts.com/.
Google CDN:
Type and scope of processing
We use Google CDN to properly provide the content of our website. Google CDN is a Google Ireland Limited service that acts as the Content Delivery Network (CDN) on our website.
A CDN helps to deliver content from our online offering, especially files such as graphics or scripts, faster with the help of regionally or internationally distributed servers. When you access this content, you connect to Google Ireland Limited servers, Gordon House, Barrow Street, Dublin 4, Irland, transmitting your IP address and, if applicable, browser data such as your user agent. This data will be processed exclusively for the above purposes and for the maintenance of the security and functionality of Google CDN.
Purpose and legal basis
The use of the Content Delivery Network is based on our legitimate interests, i.e. interest in a secure and efficient provision and the optimization of our online offer in accordance with Art. 6 sec. 1 lit. f. GDPR.
Storage time
The actual storage time of the processed data is not influenced by us, but is determined by Google Ireland Limited. For more information, see the privacy policy for Google CDN: https://policies.google.com/privacy.
Google Fonts:
Type and scope of processing
We use Google Fonts from Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland, as a service to provide fonts for our online offer. To obtain these fonts, connect to Google Ireland Limited servers, transmitting your IP address.
Purpose and legal basis
The use of Google Fonts is based on your consent in accordance with Art. 6 para. 1 lit. a. GDPR and § 25 para. 1 TTDSG.
We intend to transfer personal data to third countries outside the European Economic Area, in particular the USA. In cases where there is no adequacy decision of the European Commission (e.g. in the USA), we have agreed other suitable guarantees within the meaning of Art. 44 et seq. GDPR with the recipients of the data. Unless otherwise stated, these are standard contractual clauses of the EU Commission in accordance with Implementing Decision (EU) 2021/914 of 4 June 2021. A copy of these Standard Contractual Clauses can be found at https://eur-lex.europa.eu/legal-content/DE/TXT/HTML/?uri=CELEX:32021D0914&from=DE .
In addition, prior to such a third country transfer, we obtain your consent in accordance with Art. 49 para. 1 sentence 1 lit. a. GDPR, which you give via the consent in the Consent Manager (or other forms, registrations, etc.). We would like to point out that in the case of transfers to third countries, risks unknown in detail (e.g. data processing by security authorities of the third country, the exact scope and consequences of which we do not know for you, over which we have no influence and of which you may not be aware) may exist.
Storage period
The specific storage period of the processed data cannot be influenced by us, but is determined by Google Ireland Limited. Further information can be found in the privacy policy for Google Fonts: https://policies.google.com/privacy.
Google reCAPTCHA:
Type and scope of processing
We have integrated components of Google reCAPTCHA on our website. Google reCAPTCHA is a service provided by Google Ireland Limited and enables us to distinguish whether a contact request originates from a natural person or is automated by means of a program. When you access this content, you connect to servers of the Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland, transmitting your IP address and, if applicable, browser data such as your user agent. Furthermore, Google reCAPTCHA records the user's dwell time and mouse movements in order to distinguish automated requests from human requests. These data are processed exclusively for the purposes indicated above and to maintain the security and functionality of Google reCAPTCHA.
Purpose and legal basis
The use of Google reCAPTCHA is based on your consent in accordance with Art. 6 para. 1 lit. a. GDPR and § 25 para. 1 TTDSG
We intend to transfer personal data to third countries outside the European Economic Area, in particular the USA. In cases where there is no adequacy decision of the European Commission (e.g. in the USA), we have agreed other suitable guarantees within the meaning of Art. 44 et seq. GDPR with the recipients of the data. Unless otherwise stated, these are standard contractual clauses of the EU Commission in accordance with Implementing Decision (EU) 2021/914 of 4 June 2021. A copy of these Standard Contractual Clauses can be found at https://eur-lex.europa.eu/legal-content/DE/TXT/HTML/?uri=CELEX:32021D0914&from=DE .
In addition, prior to such a third country transfer, we obtain your consent in accordance with Art. 49 para. 1 sentence 1 lit. a. GDPR, which you give via the consent in the Consent Manager (or other forms, registrations, etc.). We would like to point out that in the case of transfers to third countries, risks unknown in detail (e.g. data processing by security authorities of the third country, the exact scope and consequences of which we do not know for you, over which we have no influence and of which you may not be aware) may exist.
Storage period
The specific storage period of the processed data cannot be influenced by us, but is determined by Google Ireland Limited. Further information can be found in the privacy policy for Google reCAPTCHA: https://policies.google.com/privacy?hl=en-US.
IONOS MyWebsite:
Type and scope of processing
Our website was created with the website modular system IONOS MyWebsite. IONOS MyWebsite is a 1&1 IONOS SE service offering web development technology, web design and layout tools, domain hosting, and other marketing and workflow management applications.
We use IONOS MyWebsite, among other things, for web hosting and the presentation of our website. In addition, IONOS MyWebsite collects statistical data about your visit to our website.
The following data is usually transmitted: website accessed, date and time of access, amount of data transferred, notification of whether a retrieval was successful, browser type and browser version, user's operating system, the previously visited website (referrer) and the IP address.
This log data is processed exclusively for the above purposes, as well as for the maintenance of security, functionality, and optimization of the offer of IONOS MyWebsite.
Purpose and legal basis
The use of the service is based on our legitimate interests, i.e. interest in a secure and efficient provision, as well as the optimization of our online offer in accordance with Art. 6 sec. 1 lit. f. GDPR.
Storage time
The actual storage time of the processed data is not influenced by us, but is determined by 1&1 IONOS SE. For more information, see the privacy policy for IONOS MyWebsite: https://www.ionos.de/terms-gtc/terms-privacy.
Mapbox Maps:
Type and scope of processing
We use the map service Mapbox Maps to create directions. Mapbox Maps is a service of Mapbox, Inc., which is a map on our website.
When you access this content on our website, you connect to servers of the Mapbox, Inc., Washington, District of Columbia, United States, submitting your IP address and, if applicable, browser data such as your user agent. This data will be processed exclusively for the above purposes and for the maintenance of the security and functionality of Mapbox Maps.
Purpose and legal basis
The use of Mapbox Maps is based on your consent in accordance with Art. 6 para. 1 lit. a. GDPR.
Storage time
The actual storage time of the processed data is not influenced by us, but is determined by Mapbox, Inc.. For more information, see the privacy policy for Mapbox Maps: https://www.mapbox.com/legal/privacy/.