Tutela dei Dati
Comprehensive data privacy statement Information on the EU General Data Protection Regulation
Data privacy information in line with the EU General Data Protection Regulation as of November 2018
We take the protection of your personal data very seriously. Your privacy is an important matter to us.
The following provisions are intended to inform you about the processing of personal data in accordance with the requirements of the General Data Protection Regulation (GDPR). This applies in particular to consideration of information obligations in line with Arts. 12 to 14 GDPR, and to clarification of the existing rights of the affected person under the GDPR in line with Arts. 15 to 22 and Art. 34 GDPR.
Notes on the responsible body
The following company is responsible for the processing of your personal data:
Georg Martin GmbH
We process your personal data in compliance with the legal data privacy requirements that apply to each group of affected persons for the purposes listed below:
Use of service providers
Some of the afore-mentioned processes or services are executed by carefully selected and commissioned service providers. We convey personal data to or receive if from these service providers solely on the basis of a processing agreement. If a service provider’s seat of business is outside the European Union or European Economic Area, information is exchanged via a third country. The legal requirements of the corresponding data privacy agreements for establishing an appropriate level of data protection are contractually agreed with these service providers along with the necessary guarantees.
Note on your rights
You have the right:
- To request confirmation from us as to whether personal data relating to you is processed by us; if this is the case, you have the right to request information on this personal data as well as the information listed individually in Art. 15 GDPR.
- To demand the release of the data affecting you in the restrictions of Art. 20 GDPR in a customary, electronic, machine-readable data format. This also includes release (to the extent possible) to another responsible person directly nominated by you.
- To demand from us the rectification of your data if it is incorrect, inapplicable and/or incomplete. Rectification also comprises completion by means of declarations or notification.
- To demand from us that personal data relating to you is deleted without delay if any of the reasons listed individually in Art. 17 GDPR should apply. We regret that we cannot delete any data which is subject to a legal retention period. If you would prefer that we no longer contact you per newsletter or in any other way, your pertinent contact data will be entered in a blocked e-mail list.
- To revoke all consent already given with effect from a future date without incurring any personal disadvantages.
- To demand restricted processing from us in the event that one of the prerequisites listed in Art. 18 GDPR has been met.
- To raise objection at any time, for reasons resulting from your very particular situation, against the processing of personal data affecting you. We will then no longer process the personal data unless we can produce evidence of compelling reasons worthy of protection which outweigh your interests, rights and liberties, or the processing of the data serves the purpose of the assertion, exercising or defence of legal claims (Art. 21 GDPR).
- To make use of another administrative or judicial legal remedy without prejudice and, if you are of the opinion that the processing of the personal data affecting you infringes the GDPR, to lodge a complaint with
– Our data protection officer: firstname.lastname@example.org or by regular mail (see Imprint)
– A supervisory authority in the member state in which you reside or work, or file a complaint at the place of the alleged infringement.
Deletion of your data
Unless otherwise regulated in the more detailed data privacy statements, we will delete your personal data once the contractual relationship with you ends, provided that you have made use of your right of deletion, all mutual claims have been settled and no other legal retention obligations or legal reasons exist for the data to be stored. Retention periods under commercial law for financially relevant data usually amount to up to 10 years. We can also retain data for as long as is necessary to protect ourselves against any claims that could be made against us. These periods can amount to up to 30 years.
As defined by this general information for employees, the terms listed below have the following meanings:
- Personal data – all information relating to an identified or identifiable natural person; a natural person is regarded as identifiable if they can be identified directly or indirectly, especially by means of allocation to a personal identifier, such as a name, ID number, localized data, online recognition or one or more special characteristics which express the physical, psychological, genetic, mental, economic, cultural or social identity of that person. Examples of this are contact data, communication data, accounting data.
- Responsible body – the natural person or legal entity, authority, institution or other body which, either alone or together with others, decides on the purpose and funding of the processing of personal data; if the purposes and funding of processing of this kind are prescribed by EU law or that of a member state, the responsible body or the specific criteria of its appointment can be arranged in line with the law of the EU or the member state.
- Data processor – a natural person or legal entity, authority, institution or other body which processes data on behalf of the responsible body.
- Recipient – a natural person or legal entity, authority, institution or other body to which personal data is disclosed, irrespective of whether the person/body concerned is a third party or not.
- Personnel – employees, including temporary workers in their relation to the borrower, persons employed to further their professional training, participants in measures to permit participation in working life or to clarify their professional suitability, probationary workers (rehabilitants), persons employed in recognized workshops for the handicapped, youth volunteers and people who have to be regarded as employee-like persons due to their economic dependency. These also include people employed to work at home and those with the same status, national government civil servants and judges, soldiers and community service workers, job applicants and persons whose employment has terminated.
- Third party – a natural person or legal entity, authority, institution or other body apart from the person in question, the responsible body, the data processor and those persons authorized to process the personal data at the direct responsibility of the responsible body or data processor.
- Profiling – every type of automated processing of personal data consisting of the use of the personal data to evaluate certain personal aspects related to a natural person. This applies in particular to the analysis or prediction of aspects regarding the work performance, economic situation, health, personal preferences, interests, reliability, behaviour, place of residence or change of residence of this natural person.
- Restriction of processing – the marking of stored personal data with the goal of limiting its future processing.
Changes to the data privacy statement
We reserve the right to amend our data privacy statement if need be and publish it at this place. Please check this site regularly. The updated statement takes effect with its publication subject to the applicable legal regulations. Should we already have recorded data relating to you which is affected by the amendment and/or is subject to a legal information obligation, we will notify you separately about any essential changes to our data privacy statement.