Data protection declaration for WIRCON Group website users
1 Data privacy at a glance
1.1 General information
Thank you for your interest in our website. [Firma] takes the protection and confidential handling of your personal data very seriously. The information below provides you with a quick overview of how we handle and use your personal data when you visit our website and your rights under the data protection regulations. Personal data is any information that relates to or identifies you as an individual (the “data subject”), such as your name, address, email addresses or user behaviour.
If you make use of special services of our company via our website, it may be necessary to process your personal data. If the processing of personal data is necessary and there is no prior legal basis for such processing, we will generally obtain your consent. The processing of personal data is always in accordance with the EU General Data Protection Regulation (GDPR) and in line with other data protection regulations applicable to [Firma] in Germany.
As the data controller, [Firma] has implemented appropriate technical and organisational measures to ensure the most comprehensive protection of your personal data processed via this website against loss, destruction, access, manipulation or disclosure by unauthorised persons. For security reasons and to protect the transmission of confidential content, such as purchase orders or enquiries you submit to us as the website operator, this website uses either an SSL or a TLS encryption program. You can recognize an encrypted connection by checking whether the address line of the browser switches from “http://” to “https://” and also by the appearance of the lock icon in the browser line. If the SSL or TLS encryption is activated, data you transmit to us cannot be read by third parties.
However, keep in mind that data transmission over the Internet can always be subject to security gaps and therefore complete protection of data against access by third parties is not guaranteed in every case.
1.2 Data controller
The controller as defined by Article 4 (7) EU General Data Protection Regulation (GDPR) and current national data protection regulations is:
WIRCON GmbH
Konrad-Zuse-Ring 30 | 68163 Mannheim | Germany
+49 (0)621 17293400 | info@wircon.com
Our Data Protection Officer can be reached by writing to ‘The Data Protection Officer’ at the above address or by email to: Datenschutzbeauftragter(at)wircon.com.
The receipt of emails may occasionally be interrupted for technical or operational reasons. We therefore recommend that you also send time-critical messages by post or fax. Please remember that communication by email is neither secure nor confidential, as the content can easily be read and manipulated by third parties. You should never send confidential data via unencrypted email.
1.3 How do we collect your data?
We collect personal data that you voluntarily provide to us, for example when you submit information in our contact form.
Other data is collected automatically or with your consent by our IT systems when you visit our website. This is mainly technical data, such as your Internet browser, operating system or time of page view. This data is collected automatically as soon as you enter our website.
1.4 What do we use your data for?
Some of the data is collected to make sure that the website functions properly. Other data may be used to analyse your user behaviour.
1.5 Who receives my data?
Except as otherwise provided in the detailed descriptions of our offers, those offices, departments, and employees within our company receive your personal data as needed to fulfil our contractual and legal obligations or to protect our legitimate interests. Data will only be disclosed to other recipients outside our company where permitted or required by law or other reporting obligations, if the disclosure is necessary for the fulfilment and execution of our contract with you or for precontractual measures taken at your request, if you have given your consent or if we are authorised to do so.
We may use external service providers for certain aspects of our offerings. These service providers are carefully selected and contracted by us, are bound by our instructions and subject to regular inspections. Agreements are in place with all of our data processors to ensure that your personal data is processed in accordance with Article 28 GDPR and that the processing of personal data meets the requirements of the GDPR. The categories of recipients in this case are our web hosting providers.
1.6 General information on the legal bases for data processing on this website
Insofar as you have given your consent to data processing, we process your personal data on the basis of Article 6 (1) (a) GDPR, or of Article 9 (2) (a) GDPR insofar as special categories of data are processed in accordance with Article 9 (1) GDPR. If you have given your explicit consent to the transfer of personal data to third countries, our legal basis for processing your personal data is set out in Article 49 (1) (a) GDPR. Insofar as you have given consent to the storage of cookies on your device or to the access of information stored therein (e.g. via device fingerprinting), we also process your personal data on the basis of Section (§) 25 (1) of the German Telecommunications Telemedia Data Protection Act (TTDSG). You may withdraw your consent at any time. If your data is necessary for the fulfilment of a contract with you or for precontractual measures, our legal basis for processing your personal data is set out in Article 6 (1) (b) GDPR. We also process your personal data on the basis of Article 6 (1) (c) GDPR if this is necessary for compliance with a legal obligation to which we are subject. In addition, your personal data may be processed for the purposes of pursuing a legitimate interest under Article 6 (1) (f) GDPR. Information on the legal bases relevant in each case is provided in the following sections of this Privacy Policy.
1.7 Storage period
Except as otherwise stated in this Privacy Policy, we store your personal data for no longer than is necessary for the processing purpose. If you assert a legitimate right to erasure or withdraw your consent to data processing, your data will be erased insofar as we have no further legally permissible basis on which to store your personal data (e.g. retention periods under tax or commercial law); in the latter case, your data will be erased once such basis expires.
2 Your rights
2.1 Information, rectification and erasure
Under the applicable provisions of the law, you have the right, at any time and at no cost, to obtain access and information about the origin, recipients and purpose of storing your personal data. You also have the right to request that it be rectified or erased. For more information or if you have any questions on the subject of personal data, you can contact us at any time.
2.2 Right to restriction of processing
You have the right to obtain from us the restriction of processing your personal data. If you wish to exercise your right, you can contact us at any time. The right to restriction of processing exists if one of the following applies:
If you contest the accuracy of your personal data that we store, we generally require time to verify this. Processing of this data will be restricted until the accuracy of your personal data has been verified.
If the processing of your personal data was / is unlawful and you request the restriction of its use instead of erasure.
If we no longer need your personal data but you require it to establish, exercise or defend a legal claim, you may request the restriction of its use instead of erasure.
If you have objected to the processing of your personal data pursuant to Article 21 (1) GDPR. Processing of this data will be restricted for the duration of the investigation into whether our legitimate interests override yours.
If you have restricted the processing of your personal data, such data will, with the exception of storage, only be processed with your consent or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the European Union or of a Member State.
2.3 Right to data portability
You have the right to receive from us the personal data processed by automated means on basis of your consent or in the context of a contract in a structured, commonly used and machine-readable format and to have it transmitted to a third party. You are also entitled to have your personal data transmitted directly to another controller, where this is technically feasible.
2.4 Right to object to processing in certain circumstances and to direct marketing (Article 21 GDPR)
YOU HAVE THE RIGHT TO OBJECT, ON GROUNDS RELATING TO YOUR PARTICULAR SITUATION, AT ANY TIME TO THE PROCESSING OF YOUR PERSONAL DATA WHICH IS BASED ON POINT (E) OR (F) OF ARTICLE 6 (1) GDPR, INCLUDING PROFILING BASED ON THOSE PROVISIONS. THE RELEVANT LEGAL BASIS FOR PROCESSING PERSONAL DATA IS SET OUT IN THIS PRIVACY POLICY. IF YOU OBJECT, WE WILL NO LONGER PROCESS YOUR PERSONAL DATA UNLESS WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING WHICH OVERRIDE YOUR INTERESTS, RIGHTS AND FREEDOMS OR FOR THE ESTABLISHMENT, EXERCISE OR DEFENCE OF LEGAL CLAIMS (OBJECTION PURSUANT TO ARTICLE 21 (1) GDPR).
IF YOUR PERSONAL DATA IS PROCESSED FOR DIRECT MARKETING PURPOSES, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF YOUR PERSONAL DATA FOR SUCH MARKETING, WHICH INCLUDES PROFILING TO THE EXTENT THAT IT IS RELATED TO SUCH DIRECT MARKETING. IF YOU OBJECT, YOUR PERSONAL DATA WILL NO LONGER BE PROCESSED FOR SUCH PURPOSES (OBJECTION PURSUANT TO ARTICLE 21 (2) GDPR).
2.5 Withdrawal of your consent to data processing
Many data processing operations are only possible with your explicit consent. You have the right to withdraw your consent at any time. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.
2.6 Right to lodge a complaint with the competent supervisory authority
Every data subject has the right to lodge a complaint with a supervisory authority, in particular in the Member State of his or her habitual residence, place of work or place of the alleged infringement if the data subject considers that the processing of personal data relating to him or her infringes the GDPR. The right to lodge a complaint exists without prejudice to any other administrative or judicial remedy.
The competent data protection supervisory authority for Baden-Württemberg is the Landesbeauftragte für den Datenschutz und die Informationsfreiheit [State Commissioner for Data Protection and Freedom of Information], Königstrasse 10 a, 70173 Stuttgart, Germany.
3 Collection of personal data when visiting our website
3.1 External hosting
This website is hosted by an external service provider (web hoster). The personal data collected on this website are stored on the web hoster’s servers. This data may include, without limitation, IP addresses, contact requests, metadata and communication data, contractual data, contact details, names, website accesses and other data generated via a website.
The web hoster is used for the purpose of contract fulfilment towards our existing and potential customers (Article 6 (1) (b) GDPR) and in the interest of reliable, fast and efficient provision of our online offer by a professional provider (Article 6 (1) (f) GDPR). Insofar as relevant consent has been obtained, the processing is carried out exclusively on the basis of Article 6 (1) (a) GDPR and Section (§) 25 (1) TTDSG, insofar as the consent covers the storage of cookies or access to information on the user’s local device (e.g. device fingerprinting) within the meaning of the TTDSG. The consent may be withdrawn at any time.
Our web hoster will process your data only to the extent that this is necessary for the fulfilment of its performance obligations and will follow our instructions with regard to this data. We have concluded a commissioned processing agreement (CPA) with our web hoster to ensure compliance with the GDPR.
3.2 Use of cookies
Cookies are small text files that are placed on your computer by websites that you visit. They are used to store a range of information, such as language settings on a website or the page where you watched a video.
Our website does not currently use cookies.
3.3 Contact by email, telephone or fax
If you contact us by email, telephone or fax, we will store and process your query, including all related personal data (name, query) for the purpose of processing your request. We will not disclose this information without your consent.
This data processing is based on Article 6 (1) (b) GDPR insofar as your query relates to the fulfilment of a contract with you or to precontractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of the queries addressed to us (Article 6 (1) (f) GDPR).
We will store the data you provide when contacting us until you ask us to erase them, you withdraw your consent or the purpose of the data storage no longer exists (e.g. once your query has been fully processed). This does not affect mandatory statutory provisions, in particular retention periods.
4 Plugins and tools
4.1 MyFonts
This website uses MyFonts. MyFonts provides fonts that are loaded onto your browser when you visit our website to ensure a uniform typeface when displaying the website. The provider is Monotype Imaging Holdings Inc., 600 Unicorn Park Drive, Woburn, Massachusetts 01801, USA.
In order to ensure compliance with the licence terms and to monitor the number of monthly page views, MyFonts transmits your IP address along with the URL of our website and our contract data to its servers in the USA. According to Monotype, your IP address will be anonymised immediately after transmission so that no personal reference can be made (anonymisation).
For details, see Monotype's privacy policy at https://www.monotype.com/de/rechtshinweise/datenschutzrichtlinie/datenschutzrichtlinie-zum-trackingvon-webschriften
5 Our social media profiles
5.1 Data processing through social media platforms
We maintain publicly available profiles on social media platforms. The individual social media platforms we use are listed below.
The purpose of our social media profiles is public relations, i.e. to inform customers about our offers, products, campaigns, promotions, company news and to interact with visitors to those social media profiles, as well as to answer corresponding queries. However, our social media pages can be used purely for information purposes without actively providing or collecting personal data.
In addition, the social media platforms offer the opportunity to leave a wide variety of content such as videos, images, public messages and comments (posts) on our company profiles. In the event of unlawful or inappropriate posts and content on our presence (this includes, among other things, posts and contents that violate or infringe the law, hate comments, lewd comments (explicitly sexual content) or attachments such as images or videos, as well as violations of copyrights, personal rights, criminal laws), we are jointly responsible with the platform operator for their deletion. If communication is addressed directly to us (personal private message, letter or email), the operator has no possibility of intervening.
Social media platforms generally analyse your user behaviour comprehensively when you visit their website or a website with integrated social media content (e.g., “like” buttons or banner ads). When you visit our social media pages, several actions are triggered. Specifically:
The platform operator is solely responsible for operating their entire IT infrastructure, complying with the data protection regulations and maintaining the user relationship with you if you are a registered user of their social network.
If you are logged in to your social media account and visit our social media page, the operator of the social media platform can assign your visit to your user account. Under certain circumstances, your personal data can also be recorded if you are not logged or do not have an account. In this case, data is collected mainly via cookies that are stored on your device or by recording your IP address.
The personal information collected can be used by the operators of social networks to create user profiles. These store your preferences and interests in order to show you personalised adverts on social media and elsewhere. If you have an account with the social network, interest-based advertising can be displayed on any device you are logged into or have logged into.
Please also note that we are not in control of all processing operations on the social media platforms. Depending on the provider, the operators could carry out additional processing of the data. Details can be found in the terms of use and privacy policy of the respective social media platforms.
Where possible, we try to ensure that the operators of the social media platforms process the data in accordance with the data protection legislation.
5.1.1 Legal basis
Our social media pages are part of our public relations work and are intended to ensure the broadest possible presence on the internet. In addition, we have a legitimate interest in responding to queries from our users and visitors and thus maintaining and promoting customer satisfaction. This is a legitimate interest within the meaning of Article 6 (1) (f) GDPR.
The analysis processes initiated by the social networks may have different legal bases, which must be specified by the operators of the social media platforms (e.g. consent within the meaning of Article 6 (1) (a) GDPR).
5.1.2 Controller and assertion of rights
When you visit one of our social media sites (e.g. Facebook), we are jointly responsible with the operator of the social media platform for the data processing operations triggered by this visit. You can assert your rights (to information, rectification, erasure, restriction of processing, data portability and complaint) both against us and against the operator of the respective social media platform (e.g. against Facebook).
Please note that despite our joint responsibility with the social media platform operators, we have limited influence on the data processing operations of the social media platforms. Our options are largely determined by the corporate policy of the respective provider.
5.1.3 Storage period
The data which we collect directly via our social media pages is deleted from our systems as soon as the purpose for its storage no longer exists, you ask us to erase it, you withdraw your consent, or the purpose for data storage no longer exists. This does not affect mandatory statutory provisions, in particular retention periods.
We have no control over the storage period of your data that are stored by the social network operators for their own purposes. For details on this, please refer to information provided by the operators of the social networks (e.g. in their privacy statements, see below). Stored cookies remain on your device until you delete them.
All public posts that you publish on our social media sites generally remain in the timeline indefinitely. You can, of course, delete your posts again if the option is given. As already described above, we reserve the right delete any comments or content deemed to be illegal or inappropriate.
We have no control over the deletion of your data or content by the social media platform operator itself. The privacy policy of the relevant operator therefore also applies in relation to the storage period.
5.1.4 Social networks in detail
XING: We have a profile on XING. The provider of this service is New Work SE, Dammtorstraße 30, 20354 Hamburg, Germany. Details on how they handle your personal data can be found in XING’s privacy policy: https://privacy.xing.com/de/datenschutzerklaerung.
LinkedIn: We have a profile on LinkedIn. The provider of this service is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland. LinkedIn uses advertising cookies.
If you would like to deactivate LinkedIn advertising cookies, please use the following link: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.
Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://www.linkedin.com/legal/l/dpa and https://www.linkedin.com/legal/l/eu-sccs.
Details on how they handle your personal data can be found in LinkedIn's privacy policy: https://www.linkedin.com/legal/privacy-policy.
6 Changes to our Privacy Policy
We reserve the right to update this Privacy Policy at any time to keep it in line with the latest legal requirements or to adjust it to reflect changes to our offering, e.g. if we introduce new services. In this case, the latest version of our Privacy Policy will apply to any further visits.
Status: 11 April 2022
Clean, renewable and affordable solar power is becoming ever more important. Our solar parks are already taking on a pioneering function for a climate-neutral future.
Locations
Present Projects
Developed Solar Parks
