data protection
Table of contents
• Responsible person
• Overview of processing
• Relevant legal bases
• Safety measures
• International data transfers
• Deletion of data
• Rights of data subjects
• Use of cookies
• Provision of the online offering and web hosting
• Presences in social networks (social media)
• Plugins and embedded functions and content
• Changes and updates to the data protection declaration
• Definitions of terms
Responsible person
Pohl & Söhne GmbH
Managing Director Matthias Pohl
Julius-Vehorn-Weg 2
46395 Bocholt
Email address: kontakt@pohl-soehne-gmbh.de
Telephone: +49 (0) 2041 / 973 38
Imprint: https://www.pohl-soehne-gmbh.de/impressum
Overview of processing
The following overview summarizes the types of processed data and the purposes of their processing and refers to the data subjects.
Types of processed data
• Location data
• Contact details
• Content data
• Usage data
• Meta, communication and procedural data
• Event data (Facebook)
Categories of data subjects
• Users
Purposes of processing
• Contact inquiries and communication
• Safety measures
• Feedback
• Marketing
• Provision of our online offering and user-friendliness
• Information technology infrastructure
Relevant legal bases
Relevant legal bases according to the GDPR: Below you will find an overview of the legal bases of the GDPR on the basis of which we process personal data. Please note that in addition to the regulations of the GDPR, national data protection regulations may apply in your or our country of residence or domicile. If more specific legal bases apply in individual cases, we will inform you of these in the data protection declaration.
• Consent GDPR – The data subject has given his or her consent to the processing of personal data concerning him or her for a specific purpose or several specific purposes.
• Legitimate interests GDPR – Processing is necessary to protect the legitimate interests of the controller or a third party, unless the interests or fundamental rights and freedoms of the data subject are protected requiring personal data predominate.
National data protection regulations in Germany: In addition to the data protection regulations of the GDPR, national data protection regulations apply in Germany. This includes in particular the law to protect against misuse of personal data during data processing (Federal Data Protection Act – BDSG). In particular, the BDSG contains special regulations on the right to information, the right to deletion, the right to object, the processing of special categories of personal data, processing for other purposes and transmission and automated decision-making in individual cases, including profiling. Furthermore, state data protection laws of the individual federal states may apply.
Note on the validity of the GDPR and Swiss GDPR: This data protection notice serves to provide information in accordance with both the Swiss Federal Data Protection Act (Swiss GDPR) and the General Data Protection Regulation (GDPR). For this reason, we ask you to note that the terms of the GDPR are used due to their broader spatial application and comprehensibility. In particular, instead of the terms “processing” of “personal data”, “overriding interest” and “particularly sensitive personal data” used in the Swiss DSG, the terms “processing” of “personal data” as well as “legitimate interest” and “special categories” used in the GDPR are used of data”. However, the legal meaning of the terms will continue to be determined according to the Swiss Data Protection Act within the scope of the Swiss Data Protection Act.
Safety measures
We take appropriate technical and organizational measures in accordance with the legal requirements, taking into account the state of the art, the implementation costs and the type, scope, circumstances and purposes of the processing as well as the different probabilities of occurrence and the extent of the threat to the rights and freedoms of natural persons to ensure a level of protection appropriate to the risk.
It includes, in particular, ensuring the confidentiality, integrity and availability of data by controlling physical and electronic access to the data as well as the access, input, disclosure, ensuring availability and its separation. We have also set up procedures to ensure that the rights of those affected are exercised, data is deleted and responses are made to data threats. We also take the protection of personal data into account when developing or selecting hardware.