Home / PRIVACY POLICY

Privacy policy

ACCORDING TO THE SPECIFICATIONS OF GDPR

Thank you for visiting our website. Thank you for your interest in our company and our services. Data protection and data security are very important to us when using our website. In the following privacy policy we inform you about which personal data we collect on our website and for what purpose they are used.

When processing personal data (e.g. name, address, telephone number, e-mail address) we always adhere to the basic data protection regulation including the country-specific data protection regulations that apply to us. We have implemented numerous technical and organisational measures to ensure the most comprehensive possible protection of personal data. Please note that Internet-based data transmissions can have security gaps and therefore no absolute protection can be guaranteed. Of course, you can also provide us with personal data (e.g. as part of an application) by alternative means (e-mail, telephone, etc.).

If no special services of the website (e.g. contact form) are used, the basic use of our website is also possible without providing personal data.

NAME AND ADDRESS OF THE
RESPONSIBLE PERSON

The person responsible within the meaning of the GDPR, other data protection laws applicable in the European Union and other data protection regulations is:

ZPP INGENIEURE AG
Lise-Meitner-Allee 11
44801 Bochum / Germany
Phone: +49 234 92 04 – 0

infono spam@zpp.de
www.zpp.de

NAME AND ADDRESS OF THE
DATA PROTECTION OFFICER

You can reach the personally appointed data protection officer of our company at the following address:

PATRICK GRIHN (DSBRuhr)
Grabenstr. 12
44787 Bochum / Germany
Phone: +49 234 810 503 00

infono spam@dsb.ruhr
www.dsb.ruhr

Questions about data protection
Please send us an e-mail datenschutzno spam@zpp.de or contact us directly.

GENERAL INFORMATION AND OBLIGATIONS

SSL / TLS ENCRYPTION

The security of your data is important to us. We use state-of-the-art encryption methods (e.g. SSL, TLS). You can recognize an encrypted connection by the green lock symbol and the "https://" in the browser address line. If SSL encryption is activated, data sent to us (e.g. via a contact form) cannot be read by third parties.

REVOCATION OF YOUR CONSENT TO DATA PROCESSING

The user has the possibility to revoke his consent to the processing of personal data at any time. If the user contacts us by e-mail, contact form or application form, he can object to the storage of his personal data at any time. The revocation of consent shall not affect the legality of the processing carried out on the basis of the consent until revocation. An informal e-mail message to us is sufficient for the revocation. All personal data stored in the course of contacting us will be deleted in this case.

RIGHT OF APPEAL TO THE COMPETENT SUPERVISORY AUTHORITY

Without prejudice to any other administrative or judicial remedy, you have the right of appeal to the competent supervisory authority. The responsible supervisory authority is the data protection officer of the federal state of North Rhine-Westphalia, in which our company is based.

RIGHT TO DATA TRANSFERABILITY

You have the right to receive the personal data concerning you that you have provided to the person responsible in a structured, common and machine-readable format. Furthermore, you have the right to transmit this data to another responsible person without obstruction by the responsible person to whom the personal data was provided, insofar as it is technically feasible with the help of automated procedures and the processing is based on a consent according to Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR or on a contract according to Art. 6 para. 1 lit. b GDPR.

INFORMATION, CORRECTION, DELETION

You have the right to obtain information about your stored personal data, their origin and recipients and the purpose of data processing at any time within the scope of the applicable legal provisions.

You have a right to rectification and/or completion if the personal data processed concerning you is incorrect or incomplete. The correction shall be made immediately.

You may request that the personal data concerning you be deleted. We will delete this data immediately upon request.

CHANGE TO OUR PRIVACY POLICY

The Privacy Policy may be amended from time to time to reflect changes in the business process and legal aspects. The new data protection declaration will then apply for your next visit.

Privacy policy status: 25.05.2018

Duration for which the personal data is stored

The personal data of the person concerned will be deleted or blocked as soon as the purpose of storage ceases to apply. Furthermore, data may be stored if this has been provided for by the European or national legislator in EU regulations, laws or other provisions to which the person responsible is subject. The data will also be blocked or deleted if a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for the conclusion or fulfilment of a contract.

Data collection on our website

Cookies

Internet pages of ZPP INGENIEURE AG do not use cookies.

SERVER LOG FILES

Every time you visit our website, our system automatically collects data and information from the computer system of the calling computer.

We record

  • Browser type and browser version
  • referrer URL
  • Time of the server request
  • IP address (if applicable in anonymous form)

The data collected is used solely for statistical evaluations and to improve the website. However, the website operator reserves the right to subsequently check the server log files if there are concrete indications of illegal use. A combination of this data with other data sources and an evaluation for marketing purposes is not carried out.

storage time
The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. If the data is stored in log files, this is the case after seven days at the latest. Further storage is possible. In this case, the IP addresses of the users are deleted or alienated, so that an assignment of the calling client is no longer possible.

legal basis
The legal basis for the aforementioned data processing is Art. 6 para. 1 lit. f GDPR. In order to be able to make the website available within the necessary framework, the processing of the data mentioned is necessary and thus represents a legitimate interest of our company.

CONTACT FORM

The website of ZPP INGENIEURE AG contains contact forms for quick electronic contact with our company and direct communication with us. If you contact us by e-mail or via a contact form, the personal data transmitted by you will be stored automatically. These personal data transmitted on a voluntary basis are stored for the purposes of processing or contacting. No personal data will be passed on to third parties without your consent.

storage time
After the inquiry and the relevant facts have been finally processed, the personal data transmitted by you to us will be deleted. If required by law, we store the data longer in individual cases.

legal basis
The data will be processed on the basis of your consent, art. 6 par. 1 lit. a GDPR. You can revoke this consent at any time. The legality of the data processing processes already carried out remains unaffected by the revocation.

FURTHER CONTACT POSSIBILITIES

On our website we provide you with various contact options by e-mail (e.g. info@zpp.de, datenschutz@zpp.de). You can send your request to these e-mail addresses. The relevant departments or persons will process the request and reply to you by e-mail. We only store and process the e-mail address provided to us for processing.

storage time
After the inquiry and the relevant facts have been finally processed, the personal data transmitted by you to us will be deleted. If required by law, we store the data longer in individual cases.

legal basis
The data will be processed on the basis of your consent, art. 6 par. 1 lit. a GDPR. You can revoke this consent at any time. The legality of the data processing processes already carried out remains unaffected by the revocation.

DATA PROTECTION FOR JOB APPLICATIONS

We collect and process personal data from job applicants for the processing of the jop application procedure. This is particularly the case if application documents are sent to us electronically, for example by e-mail or via a web form on the website. 

storage time
If we conclude an employment contract with an applicant, the data transmitted will be stored within the framework of the employment relationship in compliance with the statutory provisions. If no employment contract is concluded with the applicant, the application documents will be automatically deleted after two months at the latest after notification of the rejection decision, provided that deletion does not conflict with any other legitimate interests, e.g. the duty of proof within the framework of the German General Equal Treatment Act (AGG - Allgemeinen Gleichbehandlungsgesetz).

legal basis
The data will be processed on the basis of your consent, art. 6 par. 1 lit. a GDPR. You can revoke this consent at any time. The legality of the data processing processes already carried out remains unaffected by the revocation.

Newsletter

If you would like to receive the newsletter offered on the website, we need an e-mail address from you. We use the so-called double opt-in procedure to ensure that newsletters are sent out in agreement. In the course of this, the potential recipient can be included in a distribution list. Subsequently, the user receives the opportunity to confirm the registration in a legally secure manner by means of a confirmation e-mail. The address is only actively included in the distribution list if it is confirmed. We use your e-mail address exclusively for sending the ZPP newsletter. You can revoke your consent to the storage of the data, the e-mail address and their use for sending the newsletter at any time, for example via the "Unsubscribe" link in the newsletter.


ZPP INGENIEURE AG uses Sendinblue to send newsletters. The provider is Sendinblue GmbH, Köpenicker Straße 126, 10179 Berlin, Germany.

Sendinblue is a service with which among other things the dispatch of newsletters can be organized and analyzed. Through the analysis we can see, for example, whether a newsletter message has been opened and which links have been clicked on. If you do not wish this to be analysed, you must unsubscribe from the newsletter. For this purpose, we provide an appropriate link in every newsletter message. You can also unsubscribe from the newsletter directly on the website.

The data you enter for the purpose of newsletter subscription will be stored on Sendinblue's servers in Germany. Sendinblue is prohibited from selling your data and using it for purposes other than sending newsletters. Sendinblue is a German, certified provider selected in accordance with the requirements of the General Data Protection Regulation and the German Federal Data Protection Act. 

We have concluded a contract with Sendinblue in which we oblige Sendinblue to protect our customers' data and not to pass it on to third parties. 

legal basis
The data will be processed on the basis of your consent (Art. 6 para. 1 lit. a GDPR). You can revoke this consent at any time. The legality of the data processing processes already carried out remains unaffected by the revocation.

storage time
The data you provide us for the purpose of subscribing to the newsletter will be stored by us until you unsubscribe from the newsletter and deleted from both our servers and the servers of Sendinblue after you unsubscribe from the newsletter. 

SOCIALMEDIA

FACEBOOK

In the following, we provide information about the collection and processing of personal data on the social media platform Facebook.

This information applies to all content on our fan page on the social media platform Facebook.

Person responsible pursuant to Art. 4 (7) DSGVO
We, the body named as responsible in this data protection declaration, are responsible in part for the collection and processing of personal data.

and partly the platform operator Meta Platforms Ireland Ltd ("Facebook"). 

Information about the processing operations

a) Processing by Facebook

Facebook collects and processes your personal data partly as an independent controller. We have no influence on these processing operations.

For further information and contact details, please refer to Facebook's data policy:
https://www.facebook.com/privacy/explanation

b) Joint responsibility, Art. 26 DSGVO.

We have concluded a joint responsibility agreement with Facebook Ireland Ltd. pursuant to Art. 26 DSGVO.

Facebook creates so-called "page insights" for fan page operators. Page insights are information about how users use or interact with our fan page. There is joint responsibility for this processing.

The processing is carried out for the purpose of optimising the fan page on the basis of Art. 6 para. 1 lit. f DSGVO (legitimate interest).

Information on the recipients or categories of recipients, the storage period or the criteria for determining the storage period, as well as the possibility of exercising your rights can be found in Facebook's data policy (https://www.facebook.com/privacy/explanation).

c) Processing by us

Purposes of processing
We process your personal data for the following purposes 

  • To operate the Fanpage
  • To provide information (e.g. about products, services, etc.)
  • Communicating with our customers
  • Answering enquiries
  • Optimisation and analysis of the Fanpage


Legal basis
The processing for the above-mentioned purposes is based on Art. 6 para. 1 lit. f DSGVO (Legitimate Interest) or Art. 6 para. 1 lit. b DSGVO (performance of a contract or pre-contractual measures).

Recipients / categories of recipients
Your data will be processed and made available at the necessary points within the responsible body.

Furthermore, depending on how you interact with our fan page, some data may be published on Facebook (e.g. in the case of comments, "Like" statements, images, videos, etc.). This data may be visible to other users of our fan page.

Storage period
Data published by you on Facebook (e.g. comments, "like" comments, pictures, videos, etc.) will remain indefinitely unless you or we delete this data. We reserve the right to delete public content if this should be necessary (e.g. in the case of illegal content).

All other data will be deleted if it is no longer needed to fulfil the processing purposes for which it was collected.

We have no influence on the deletion of data by Facebook. You can find more information in Facebook's data policy
(https://www.facebook.com/privacy/explanation).