EN Partners by nature.

Data protection declaration

Privacy policy

Thank you for visiting our website https://www.gemuesering.de/en/ and your interest in our offer. In the course of your use of our services, your personal data may be processed. The protection of your data is always an important concern for us. This privacy policy explains how we process personal data and what rights you have.

This privacy policy can be accessed and printed out at any time on our website.

 

Content

I. General information
II. Data controller
III. Data protection officer
IV. Scope of data processing
V. Data security
VI. Processing of personal data
VII. Storage and deletion of data
VIII. Your rights
IX. Data transfer / third country transfer
X. Data processing when calling up linked content
XI. Automated decision making / profiling
XII. Topicality and amendment of this privacy policy

 

I. General information

This privacy policy informs you about the handling of your personal data when using our website. It explains, in particular, what data we collect and what we use it for. It also informs you about how and for what purpose this is done.

Personal data ("data") is any information relating to an identified or identifiable individual. "Processing" of data means any operation performed upon personal data, whether or not by automatic means, such as collection, recording, organisation, filing, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction. The legal basis for data protection can be found, in particular, in Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data, on the free movement of such data and repealing Directive 95/46/EC ("General Data Protection Regulation", GDPR), as well as in the German Federal Data Protection Act (BDSG) and the Telecommunications and Telemedia Data Protection Act (TTDSG).


II. Data controller

The data controller responsible for the processing of your data is

Gemüsering Stuttgart GmbH
Langwiesenweg 30
70327 Stuttgart
Tel.: +49 711 168650
E-mail: info@gemuesering.de

The data controller is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data.


III. Data protection officer

We have appointed a data protection officer for our company. You can reach this person under:

Richard Ruckgaber
E.M.A. services
Phone: +49 7181 64444
E-mail: datenschutz@ema-services.de


IV. Scope of data processing

We treat your personal data confidentially and in accordance with the statutory data protection regulations and on the basis of this data protection declaration. We process your data only as necessary for the purpose of providing a functional and user-friendly internet presence or website and for the provision of our content and services. Failure to provide the data may have legal disadvantages, such as the impracticability of a contract. As part of our data processing, we use various third-party providers in the areas of hosting, online marketing and customer/data management (CRM), each of which processes data on our behalf. We have concluded corresponding order processing agreements with these third-party providers, insofar as the third parties are order processors, which ensure that an adequate level of data protection is also guaranteed at our order processors (Art. 28 GDPR).


V. Data security

We have taken technical and organisational measures to ensure that the regulations on data protection are observed both by us and by external service providers. For security reasons and to protect the transmission of confidential content that you send to us as the site operator, our website uses SSL or TLS encryption.


VI. Processing of personal data

The following overview lists all types of data processed by us, the purposes of their processing, as well as the legal basis for their processing.

  1. Use of the website

If you use our website without otherwise transmitting data to us (e.g. by using the contact form), we collect the following data on our web server temporarily and anonymously via server log files:

  • Website from which our website was requested (so-called referrer URL)
  • Name and URL of the requested website
  • Date and time of access to the website
  • Description of the type, language and version of the web browser used
  • IP address of the requesting computer, which is shortened in such a way that a personal reference can no longer be established
  • Notification whether access was successful (access status/ HTTP status code)
  • Internet service provider of the accessing system
  • Amount of data transmitted in each case
  • Operating system used and its interface
  • The GMT time zone difference
  • Also if a mobile terminal is used, if applicable: Country code, language, device name, operating system name and version

This processing is technically necessary in order to be able to display our website to you. We also use the data for statistical evaluations to ensure the operational security and stability of our website. The legal basis for this processing is Art. 6 (1) S. 1 lit. f GDPR. The processing of the aforementioned data is necessary for the provision of the website and to ensure the stability and operational security of the website and thus serves to protect a legitimate interest of our company.

We also use the data to fulfil our legal obligations for reasons of data security. The legal basis for this processing is Art. 6 (1) S. 1 lit. c GDPR.

2. Contact

If you write to us, e.g. by sending us an e-mail or contacting us via the contact form, we store the contact data you provide, such as name, address, mobile phone number, e-mail and the information provided in your enquiry.

If you contact us within the framework of an existing contractual relationship or contact us in advance for information about our range of services or our other services, the data and information you provide will be processed for the purpose of processing and responding to your contact request on the legal basis of Art. 6 (1) S. 1 lit. b GDPR. Insofar as you have consented to the processing for the purpose of answering your enquiry, the legal basis is Art. 6 (1) S. 1 lit. a GDPR. Furthermore, we process your data to protect our legitimate interests in accordance with Art. 6 (1) S. 1 lit. f GDPR for the appropriate response to customer/contact enquiries.

3. Application

If you apply for a job with us, we process your data for the purpose of carrying out the application process. This data includes your name, e-mail address, address and telephone number, age, employment history, qualifications, country of residence, language skills and any other personal information you provide as part of your interaction with us. We may also ask you for additional information to help us with our recruitment process and if you are offered a job, such as your date of birth and employment record. The processing may also be carried out electronically. This is particularly the case if an applicant sends us the relevant application documents electronically, for example, by e-mail.

Our career portal also lists vacancies at our subsidiaries. If you apply for one of these jobs, your personal data will be processed for the purpose of the application process by both us and our affiliates, as their involvement is necessary for the allocation of the job. Your personal data will only be collected or processed by persons who are responsible for processing the application. All staff involved have been obliged to treat your data confidentially. In particular, they must not disclose any data to unauthorised persons. Your data will only be passed on to other subsidiaries if you have given your consent to this.

We process your personal data for the purpose of establishing and/or implementing the employment relationship with you (Section 26 Federal Data Protection Act [BDSG]). Insofar as you have consented to processing for the purpose of handling your application, the legal basis is Art. 6 (1) S. 1 lit. a GDPR.

In the event that we do not conclude an employment contract with the applicant, the application documents will be automatically deleted two months after notification of the rejection decision, provided that no other legitimate interests prevent deletion. Another legitimate interest in this sense is, for example, a duty to provide evidence in proceedings under the General Equal Treatment Act (AGG).

4. Whistleblowing system

We have implemented a whistleblower system that allows you to anonymously or non-anonymously report violations that affect our company. In this context, we process the personal data you provide as part of the notification, in particular, your name and contact details in the case of non-anonymous notification. The legal basis for the processing is Art. 6 (1) lit. f) GDPR, as we have a legitimate interest in providing a whistleblower system for the protection of whistleblowers. We have also implemented an online reporting centre, which is managed and operated by the service provider eagle lsp GmbH, Neustädter Neuer Weg 22, 20459 Hamburg. The legal basis for the involvement of the service provider is Art. 6 (1) lit. f) GDPR, as we have a legitimate interest in the use of a whistleblower-friendly, technical solution.

5. Cookies

On our website, we use cookies that are either offered by ourselves or by third parties. Cookies are small data records that are stored on the terminal device you are using and saved by the browser. Cookies are used to make our website more user-friendly, effective and secure. There are different types of cookies that are used for different purposes. Some cookies ensure that our offers function correctly or that you are recognised on your end device after successful registration ("necessary cookies"). By placing these necessary cookies, we make it easier for you to visit our offers and use the services available there. Other cookies are placed to analyse user preferences in order to improve our services ("advanced cookies"). We only set non-essential cookies with your consent. When you visit our offers for the first time, a pop-up is displayed ("cookie banner") in which the individual cookies are described in more detail. You have the option there to allow or reject cookies according to your preferences. You can change your settings at any time by clicking on our integrated icon at the bottom left of the website. We would like to point out that the functionality of this website may be limited if cookies are deactivated.

When cookies are used, the following data is processed – depending on the browser setting:

  • Usage data (e.g. websites visited, interest in content, access times),
  • Meta/communication data (e.g. device information, IP addresses)
  • Location data (data indicating the location of an end user's terminal device)

If personal data is processed when necessary cookies are used, this is based on Art. 6 (1) S. 1 lit. f GDPR due to legitimate interests of quality assurance and a technically flawless presentation of the website. The processing of personal data when using advanced cookies is based on your consent (Art. 6 [1] S. 1 lit. a GDPR). Technical access to your terminal device is governed by Section 25 Telecommunications and Telemedia Data Protection Act (TTDSG) and also requires consent in the case of cookies that are not necessary (Section 25 [1] Telecommunications and Telemedia Data Protection Act [TTDSG]).

consentmanager

We use consentmanager, a consent management service, on our website. When visiting our website, you have the option to select your preference regarding the use of cookies in the cookie banner. The use of consentmanager enables us to obtain and manage your cookie consent and/or your consent to the use of certain technologies. When you enter our website, the following personal data is transferred to consentmanager:

  • Your consent or the revocation of your consent
  • Your IP address
  • Information about your browser and your terminal device
  • Time of your visit to the website

Furthermore, consentmanager stores cookies in your browser in order to be able to allocate the consent you have given or its revocation. The use of consentmanager enables legally compliant documentation as well as verifiability of consent, fulfils basic functions of the website and is necessary for its proper functioning. This represents a legitimate interest, the legal basis for data processing in this respect is Art. 6 (1) lit. f GDPR. The use of consentmanager also takes place in order to obtain the legally required consents for the use of certain technologies. The legal basis for this is Art. 6 (1) S. 1 lit. c GDPR.

consentmanager GmbH, Eppendorfer Weg 183
20253 Hamburg; Website: https://www.consentmanager.net/; Privacy policy: https://www.consentmanager.net/datenschutz/.

6. External hosting

Our website is hosted by the external service provider Strato (STRATO AG, Otto-Ostrowski-Straße 7, 10249 Berlin). The personal data collected on this website is stored on the hoster's servers. This personal data may be IP addresses, contact requests, meta and communication data, contractual data, contact data, names, website accesses and other data generated via the website. We use external hosting in order to be able to provide our online offer securely, quickly and efficiently through a professional provider. The most reliable possible presentation of our website represents a legitimate interest, which is why the processing of personal data takes place on the legal basis of Art. 6 (1) lit. f GDPR. Our hoster will only process your data to the extent that this is necessary for the fulfilment of its service obligations and will follow our instructions with regard to this data.
You can find Strato's privacy policy at https://www.strato.de/datenschutz/.

Cloudfare

On our website we use a so-called Content Delivery Network ("CDN") of the technology service provider Cloudflare. A content delivery network is an online service that is used, in particular, to deliver large media files (such as graphics, page content or scripts) through a network of regionally distributed servers connected via the Internet. For this purpose, Cloudfare may process personal data in server log files, for example, your IP address, URLs of visited pages, date and time of access or telemetry data (e.g. mouse clicks, movement sequences and associated browser data). The use of Cloudflare's Content Delivery Network helps us to optimise the loading speeds of our website. The processing is carried out in accordance with Art. 6 (1) lit. f GDPR on the basis of our legitimate interest in a secure and efficient provision, as well as the improvement of the stability and functionality of our website.

Cloudfare Inc, 101 Townsend St, San Francisco, CA 94107, USA; Website: https://www.cloudflare.com/de-de/; Privacy Policy: https://www.cloudflare.com/privacypolicy/.

Akamai

On our website, we use a so-called Content Delivery Network ("CDN") of the technology service provider Akamai. A content delivery network is an online service that is used, in particular, to deliver large media files (such as graphics, page content or scripts) through a network of regionally distributed servers connected via the Internet. For this purpose, personal data may be processed in server log files by Akamai, for example, your IP address, URLs of visited pages, date and time of access or telemetry data (e.g. mouse clicks, movement sequences and associated browser data). The use of Akamai's Content Delivery Network helps us to optimise the loading speeds of our website. The processing is carried out in accordance with Art. 6 (1) lit. f GDPR on the basis of our legitimate interest in a secure and efficient provision, as well as the improvement of the stability and functionality of our website.

Akamai Technologies GmbH, Parkring 22, 85748 Garching; Website: https://www.akamai.com/de; Privacy policy: https://www.akamai.com/legal/privacy-and-policies/privacy-statement.

7. Plug-ins, tools and similar techniques

On our website, we use so-called pixel tags (invisible graphics, also referred to as "web beacons") and other technologies of the third-party providers listed below for marketing purposes and the provision of our content. The "pixel tags" can be used to analyse information such as visitor traffic on the pages of this website. The pseudonymous information may also be stored in cookies on the user's device and may contain, among other things, technical information about the browser and operating system, referring websites, time of visit and other information about the use of our online offer as well as be linked to such information from other sources.

When pixel tags are used, usage data (e.g. websites visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses) and location data are processed. We process this data for the purposes of font display, direct marketing (e.g. by e-mail or post), tracking (e.g. interest/behavioural profiling, use of cookies) and interest-based and behavioural marketing. The processing of this data is based on your consent, the legal basis is Art. 6 (1) S. 1 lit. a GDPR.

Vimeo

We integrate videos into our website with Vimeo. The videos are stored on http://www.vimeo.com but can be played directly from our website. Due to the integration, data is transmitted to Vimeo for technical reasons, for example, browser data and information about the website visited. If you play a video, further data will be transmitted to Vimeo, in particular, the information about the video accessed. If you are logged in to your Vimeo account, your data will be directly assigned to your account. If you do not wish to be associated with your profile, you must log out. Vimeo stores your data (even for users who are not logged in) as usage profiles and evaluates them. The processing of your data in the context of the use of Vimeo is based on your consent, the legal basis is Art. 6 (1) S. 1 lit. a GDPR.

Vimeo, Vimeo.com Inc, 555 West 18th Street, New York, New York 10011, USA; Website: https://vimeo.com/; Privacy Policy: https://vimeo.com/privacy.

 

Youtube

We integrate videos into our website with YouTube. We use the extended data protection mode which, according to the YouTube provider, only initiates the storage of user information when the video is played. Data processing and transfer of data by YouTube is not completely excluded by the extended data protection mode. Independently of a playback of the embedded videos, for example, a connection to the Google network "DoubleClick" is established every time this website is accessed. As soon as you start a YouTube video on this website, a connection to the YouTube servers is established. In the process, information about your use of our website (e.g. which of our pages you have visited) is transmitted to YouTube servers and stored there; this may also involve transmission to Google LLC servers in the USA. This takes place regardless of whether you are logged into a YouTube account or whether such a user account exists. If you are logged in to your YouTube account, your data will be directly assigned to your account. If you do not wish to be associated with your profile, you must log out. YouTube stores your data (even for users who are not logged in) as usage profiles and evaluates them. The processing of your data in the context of the use of YouTube is based on your consent, the legal basis is Art. 6 (1) S. 1 lit. a GDPR.

Youtube, Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; Website: https://www.youtube.com/; Privacy Policy: https://policies.google.com/privacy.

Google Maps

We use Google Maps on our website. Google Maps is a web service for displaying interactive (land) maps to visually present geographical information. Information about your use of our website (such as your IP address) is transmitted to Google servers and stored there when you call up those sub-pages in which the Google Maps map is integrated; this may also involve transmission to the servers of Google LLC. in the USA. This is done regardless of whether Google provides a user account via which you are logged in or whether a user account exists. If you are logged in to Google, your data will be directly assigned to your account. If you do not wish to be associated with your Google profile, you must log out. Google stores your data (even for users who are not logged in) as usage profiles and evaluates them. The processing of your data in the context of the use of Google Maps is based on your consent, the legal basis is Art. 6 (1) S. 1 lit. a GDPR.

Google Maps, Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; Website: https://www.google.de/maps; Privacy Policy: https://policies.google.com/privacy.

8. Analysis tools and advertising

Google Analytics

We use Google Analytics, a web analytics service provided by Google LLC, on our websites. In this context, pseudonymised usage profiles are created and cookies are used (see "Cookies" above). The information generated by cookies about your use of this website, such as browser type/version, operating system used, referrer URL (the previously visited page), host name of the accessing computer (IP address), time of server request, is transmitted to a Google server in the USA and stored there. Google LLC processes the data in the USA and ensures compliance with European data protection regulations through the use of EU standard contractual clauses (SCCs). The information is used to evaluate the use of the website, to compile reports on website activity and to provide other services related to website and internet use for the purposes of market research and demand-oriented design of these Internet pages. This information may also be transferred to third parties if this is required by law or if third parties process this data on our behalf. Under no circumstances will your IP address be merged with other Google data. The IP addresses are anonymised so that an assignment is not possible (IP masking).

You may refuse the use of cookies by selecting the appropriate settings on your browser; however, please note that, if you do this, you may not be able to use the full functionality of this website. These processing operations are only carried out if you have given your express consent in accordance with Art. 6 (1) S. 1 lit. a GDPR.

You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) and the processing of this data by Google by downloading and installing a browser add-on (http://tools.google.com/dlpage/gaoptout?hl=en).

Google Analytics, Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; Website: https://marketingplatform.google.com/intl/de/about/analytics/; Privacy policy https://policies.google.com/privacy; Further information: Types of processing and data processed: https://business.safety.google/adsservices/; data processing terms and conditions for Google advertising products and standard contractual clauses for third country transfers of data: https://business.safety.google/adsprocessorterms/.

Google Tag Manager

We use the Google Tag Manager from Google. Google Tag Manager is a tool that allows us to embed tracking or statistical tools and other technologies on our website. The Google Tag Manager itself does not create user profiles, does not store cookies and does not perform any independent analyses. It is only used for the administration and playout of the tools integrated via it. However, Google Tag Manager collects your IP address, which may also be transmitted to Google LLC in the United States.

The use of the Google Tag Manager is based on Art. 6 (1) lit. f GDPR. We have a legitimate interest in a quick and uncomplicated integration and management of various tools on its website.

Google Tag Manager, Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, Parent Company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; Privacy Policy https://policies.google.com/privacy; Further information: Types of processing and data processed: https://business.safety.google/adsservices/; data processing terms and conditions for Google advertising products and standard contractual clauses for third country transfers of data: https://business.safety.google/adsprocessorterms/.

Google Fonts

We use Google Fonts for our website. The service allows us to use external fonts. For this purpose, the required font is loaded into the browser cache by your web browser when you call up our website. This is necessary so that your browser can display a visually improved representation of our texts. If your browser does not support this function, a standard font is used by your computer for display. The integration of these fonts takes place through a server call at a Google server. This transmits to the server which of our Internet pages you have visited. The IP address of the browser of your terminal device is also stored by Google. These processing operations are only carried out if you have given your express consent in accordance with Art. 6 (1) S. 1 lit. a GDPR.

Google Fonts, Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; Privacy Policy https://policies.google.com/privacy; Further information: Types of processing and data processed: https://business.safety.google/adsservices/; data processing terms and conditions for Google advertising products and standard contractual clauses for third country transfers of data: https://business.safety.google/adsprocessorterms/.

Google reCAPTCHA

We use Google reCAPTCHA on our website. With reCAPTCHA, it can be checked whether the data entry on our websites (e.g. in a contact form) is made by a human or by an automated programme. For this purpose, reCAPTCHA analyses the behaviour of the website visitor on the basis of various characteristics. This analysis begins automatically as soon as the website visitor enters the website. For analysis purposes, reCAPTCHA evaluates various information (e.g. IP address, time spent by the website visitor on the website or mouse movements made by the user). The data collected during the analysis is forwarded to Google. The reCAPTCHA analyses can run completely in the background without the website visitor being notified that an analysis is taking place. These processing operations are only carried out if you have given your express consent in accordance with Art. 6 (1) S. 1 lit. a GDPR.

Google reCAPTCHA, Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; Privacy Policy https://policies.google.com/privacy; data processing terms and conditions for Google advertising products and standard contractual clauses for third country transfers of data: https://business.safety.google/adsprocessorterms/.

Leadinfo

We use the lead generation service of Leadinfo B.V., Rotterdam, Netherlands. This recognises visits by companies to our website on the basis of IP addresses and shows us publicly available information, such as company names or addresses. In addition, Leadinfo sets two first-party cookies to evaluate user behaviour on our website and processes domains from form entries (e.g. "leadinfo.com") in order to correlate IP addresses with companies and improve the services. Further information can be found at www.leadinfo.com. On this page: www.leadinfo.com/en/opt-out you have an opt-out option. If you opt out, your data will no longer be collected by Leadinfo."

9. Social media

We are present on the following social media platforms and process user data in this context in order to communicate with users active there or to offer information about us:

VII. Storage and deletion of data

The data processed by us will be deleted in accordance with our deletion concept and in accordance with the legal requirements as soon as the consent permitted for processing is revoked or other permissions cease to apply (e.g. if the purpose for processing this data has ceased to apply or it is not required for the purpose). This means that we only store your personal data for as long as it is required for the respective processing purpose and limit the storage period to the minimum necessary. In addition, we only store your data if we are entitled or obliged to do so in accordance with statutory retention periods (for example, in accordance with the German Commercial Code [HGB] or the German Fiscal Code [AO]).

Our privacy notices may also contain further information on the retention and deletion of data, which will take precedence for the respective processing operations.


VIII. Your rights

You have the following rights:

  • the right to the disclosure of information held about you,
  • the right to rectification or erasure,
  • the right to restrict processing,
  • the right to data portability,
  • the right to revoke any consent you have given with effect for the future.
  • the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you which is carried out on the basis of Article 6 (1) S. 1 lit. e) or f) GDPR; this also applies to profiling based on these provisions.

To exercise your above rights, you can send an e-mail to datenschutz@ema-services.de send. You also have the right to lodge a complaint with a data protection supervisory authority about the processing of your personal data.

IX. Data transfer / third country transfers

We will only pass on your data to third parties if you have consented to this or if there is another legal basis. Insofar as we use third-party tools that process your data outside the EU/EEA, we ensure that the legal requirements of Art. 44 et seq. GDPR for such a third country transfer are met, and that your data is processed in the third country concerned in accordance with the European data protection standard. As a rule, we use the so-called EU standard contractual clauses (SCC) for this purpose, which we conclude with the respective provider. In addition, in accordance with the requirements of the ECJ ("Schrems II"), a case-by-case risk analysis is carried out with regard to the respective third country transfer in order to ensure that your data is processed lawfully in the third country concerned and, in particular, that access to your data by state authorities is prevented.

X. Data processing when calling up linked content

This privacy policy only applies to this website. However, the website may also contain external links or hyperlinks to websites of other providers. They are to be distinguished from own content. This third-party content does not originate from us, nor do we have any influence on the content of third-party sites. If you are redirected to other pages via links within the website, please inform yourself there about the respective handling of your data.

XI. Automated decision making/profiling

We do not use automated decision making or profiling (an automated analysis of your personal circumstances).

XII. Topicality and amendment of this privacy policy

This privacy policy is currently valid as of December 2022.

Due to the further development of our website and offers on it, or due to changed legal or official requirements, it may become necessary to change this data protection declaration.