Data protection

1./ Who is responsible for data processing (the controller) and whom can I contact?

 

The controller is:

Name: Tronic One GmbH, Herr Geschäftsführer Jan Schühlein

Address: Leverkusenstr. 3, 22761 Hamburg

Telephone: +49 (0) 40 2263481-0

E-mail: info@tronic.one

 

The data protection officer is:

Name: Dr. Peter Trinks (LAWSOC GmbH)

Address: Admiralitätstraße 58, 20459 Hamburg

Telephone: +49 (0) 40 254670500

E-mail: info@lawsoc.de

*abbreviation

GDPR – General Data Protection Regulation
BDSG – German Federal Data Protection
TMG – German Telemedia Act
GwG – German Money Laundering Act
HGB – General Commercial Code
KWG – German Banking Act
AO – German Fiscal Code
BGB – German Civil Code
UWG – German Act Against Unfair Competition

Information in accordance with Articles 13, 14 and 21 of the General Data Protection Regulation (GDPR) and other data protection legislation

 

2./ For what purpose do we process your data and what is the legal basis for that? / Can I refuse consent to my data being collected?

Whenever it is called by you or an automated system, our website records a number of items of general data and information.

2.1. For the fulfilment of contractual obligations / based on consent for the fulfilment of contractual obligations / based on consent (Art. 6 para. 1 a, b DSGVO)

We use the personal data (e.g. name, address, e-mail address, telephone and fax number, nationality, gender, company name, identification data, tax ID, information on legal representation) provided to us voluntarily to carry out contracts or the steps prior to entering into a contract. This is on the basis of the related consent given in Article 6 (1) point (a) GDPR. We then process this data in accordance with statutory requirements (such as under the German Federal Data Protection Act (BDSG), the German Telemedia Act (TMG) and the General Data Protection Regulation (GDPR). Which personal data transmitted to the controller depends on our questions or your autonomous decision as to what information you wish to provide us with. We process the data required to perform a contract or steps prior to entering into a contract (such as replying to questions you have about a product or service) (Article 6 (1) point (b) GDPR).

If you do not provide the personal data, we cannot fulfill our contractual obligations (such as invoicing, performance of our services, asserting claims, or correspondence with you). Neither can we answer your request.

2.2. On the basis of a weighing of interests (Article 6 (1) point (f) GDPR)

Where necessary, we process your data above and beyond actual performance of the contract to safeguard legitimate interests of ours or third parties (e.g.):

  • Consultation of and data exchange with credit agencies (e.g. Euler Hermes) to determine creditworthiness and default risks and the need for a garnishment protection account or basic account.
  • examination and optimization of processes for analyzing needs and direct addressing;
  • advertising or market and opinion research, insofar as you have not objected to the use of your data;
  • assertion of claims and defence in the event of legal disputes
  • assertion of claims and defence in the event of legal disputes
  • Prevention and investigation of criminal offences;
  • to operate our website;
  • measures for building and plant security (e.g. access controls);
  • measures for controlling business and further developing services and products.

Processing of the data is necessary to safeguard our legitimate interests (in accordance with Article 6 (1) point (f) GDPR) and is justified on account of our overriding interests. We use your data to market our services only if you have first consented to that (Article 6 (1) point (a) GDPR) and have not withdrawn your consent.

 

 

3./ Who uses the data?

3.1 The personal data is used solely by the persons and departments involved in handling the contract; these are employees of our company.

3.2 The processors we engage (Article 28 GDPR, basis for that: Article 6 (1) points (a) and (b) GDPR) may receive data for such purposes (hosting companies, telephone service providers). These processors are companies in industries like IT services, logistics, printing services, telecommunications, debt collection, advice and consulting, and sales and marketing. We store the data we receive on our firm’s own servers, but partly also on servers of specialized service providers within Germany.

3.3 Data is not transferred to third parties who are not involved or relevant to the contract. In particular, personal data is not transferred to a third country or an international organization.

 

 

4./ For how long is your data stored?

4.1 Where necessary, we process and store your personal data only for the period of time it is needed or which is authorized by European Directives or Regulations or other laws or provisions of another legislator to which the controller is subject. As part of that, we are subject to various retention and documentation obligations, among other things pursuant to the General Commercial Code (HGB), the German Fiscal Code (AO), the German Banking Act (KWG), and the German Money Laundering Act (GwG). Section 147 of the German Fiscal Code (AO), for example, stipulates a retention period of ten years.

4.2 If you have consented to processing of your personal data (Article 6 (1) point (a) GDPR), we erase your data as soon as possible after you withdraw your consent and there is no other legal grounds for processing the data.

4.3 If the purpose for which the data is stored no longer applies or the storage period prescribed by European Directives or Regulations or another competent legislator expires, the personal data is routinely blocked or erased in accordance with the statutory provisions, if it is no longer required or necessary.

 

 

5./ Is automated processing used?

We do not take any decisions within the meaning of Article 22 GDPR, which is based solely on automated processing, including profiling, and/or which produces legal effects concerning you or similarly significantly affects you.

 

 

6./ What data protection rights do you have?

You have the right to access personal data and obtain information on it (Article 15 GDPR), the right to rectification of data (Article 16 GDPR), the right to erasure of data (Article 17 GDPR), the right to restriction of processing (Article 18 GDPR), and the right to data portability (Article 20 GDPR) and the right to object to processing of your data (Article 21 GDPR). If you have granted your consent to processing of your data, you can withdraw it at any time (Article 7 GDPR). You also have a right to lodge a complaint with a data protection supervisory authority (Article 77 GDPR); see Section 7./ as well.

Please send your withdrawal of consent or your request to:

Name: Tronic One GmbH, Herr Geschäftsführer Jan Schühlein

Address: Leverkusenstraße 3, 22761 Hamburg

Address: +549 (040) 2263481-0

 

Alternatively, you can also contact our data protection officer directly.

 

 

7./ Right to lodge a complaint

You have the right to lodge a complaint with a supervisory authority, in particular in the country in which you are currently residing, where your place of work is located or at the place of the alleged infringement if you consider that the processing of personal data concerning you infringes the GDPR.

 

 

8./ Data protection as part of applications and in the application process

We collect and process personal data from job applicants so as to handle the application process (Article 6 (1) points (a) and (b) GDPR). The data may also be processed electronically. That is the case in particular when applicants send their application documents to the controller electronically, such as by e-mail or using a form on the website. We cannot handle an application if we do not collect the data. If you conclude an employment contract with us, the data provided is stored for use as part of the employment relationship in compliance with statutory provisions. If an employment contract is not concluded with an applicant, the application documents are automatically erased two (2) months after a decision to reject the applicant is communicated, unless the controller has other legitimate interests for not erasing it. Another legitimate interest here is, for example, the requirement to furnish proof in the event of legal action under the German General Act on Equal Treatment (AGG).

 

 

9./ Use of cookies

We do not use cookies.

 

 

10./ Social Networks

Social Networks

  • Facebook

After clicking on the corresponding logo (links) you will be redirected to the website of the respective provider. After the redirection, user information is transferred to the respective provider. The data protection regulations of the providers of these web-sites can be viewed there directly. We have no influence on this.

 

 

11./ creditworthiness information

If we make advance payments, e.g. in the case of a purchase on account, we may obtain a credit check based on mathematical-statistical methods from Euler Hermes SA in order to protect our legitimate interests. For this purpose, we transmit the personal data required for a credit check to Euler Hermes SA and use the information received about the statistical probability of a payment default for a weighed decision about the establishment, implementation or termination of the contractual relationship. The creditworthiness information may include probability values (score values) which are calculated on the basis of scientifically recognised mathematical-statistical procedures and in the calculation of which, among other things, address data are included. Your interests worthy of protection are taken into account in accordance with the statutory provisions.

Further information and the data protection declaration of the Euler Hermes German branch of Euler Hermes SA can be found at: https://www.eulerhermes.de/datenschutz.html.

The data is processed to protect our legitimate interests (Art. 6 para. 1 f DSGVO). We also process the data for the fulfilment of the contract or for the implementation of pre-contractual measures (Art. 6 para. 1 b DSGVO). Without the credit report, we cannot conclude contracts with you.

 

 

12./ Encryption

We use SSL and TLS encryption to protect the transmission of confidential data. You can tell that a connection is encrypted by the fact that “https://” is displayed in your browser’s address bar. Usually this is a 256 bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can tell whether an individual page of our website is being transmitted in encrypted form by the closed display of the key or lock symbol in the upper status bar of your browser and by the fact that "https://" appears in the address line of your browser. We also use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, de-struction or unauthorized access by third parties. Our security measures are continu-ously improved in line with technological developments.