Data Protection

Informationen regarding data protection

This data protection declaration refers to the processing of your personal data by KIMA Gesellschaft für elektronische Steuerungstechnik und Konstruktion mbH (KIMA).

Contact person

KIMA Gesellschaft für elektronische Steuerungstechnik und Konstruktion mbH
Anna-Merian-Str. 5, 48599 Gronau-Epe
Tel.: +49 2565 9346-0
Fax: +49 2565 7848
E-Mail: office@kima.de

Right of representation:
Jürgen Petruschke (Managing Director)
Alfred Klein (Managing Director)
Andreas Boyer (Authorized Representative)
Dirk Löbbering (Authorized Representative)

Contact details of the data protection officer:
datenschutz@kima.de

Types of personal data that we process:

Depending on the customer or contractual relationship, we process the following categories of your personal data:

  • Contact details (e.g. name, address, e-mail address, telephone number)
  • Contract data within the scope of projects
  • Payment and accounting data (e.g. bank details)
  • Personal data in the context of the employment relationship

Purpose and legal basis

The personal data concerning you will be processed for the following purposes and on the basis of the following legal provisions:

  • Pre-contractual measures and performance of the contract (Art. 6 Abs. 1 lit. b) DSGVO
  • Data processing on the basis of your consent (Art. 6 Abs.1 a DSGVO)
  • Data processing for legitimate reasons (Art. 6 Abs. 1 f DSGVO)

We also process data on the basis of Art. 6 Abs. 1 lit.c DSGVO in order to fulfil legal obligations (e.g. due to commercial or tax law requirements).

Origin of your personal data

We collect your personal data directly from you, e.g. by direct inquiries to us.

Disclosure of personal data to third parties (recipients)

Your personal data will be disclosed or transmitted within the scope of the aforementioned purposes. Recipients of personal data may, for example, be:

  • IT service providers
  • Print and shipping service providers
  • Data destruction service provider
  • Consultants and consulting companies

If data is passed on, this usually takes place as part of order processing. For this purpose, our service providers are contractually bound to secure, confidential and correct processing.

The processing of personal data takes place primarily in the territory of the European Union (EU), as far as we are active in these countries. Data will only be transferred outside the EU (in third countries) or to international organizations if the special requirements of Art. 44 ff. of the German Data Protection Act are met.

This may occur if we have to transfer personal data for a overseas project or in connection with the implementation of the project. This will then generally be known in advance by those concerned.

Period of storage

Personal data will be stored for the purposes stated for the duration necessary to fulfil the purposes and if there are no other legal storage obligations (HGB, tax code) or legal reasons for the storage. This means that we will delete your personal data after expiry of the statutory storage obligations, usually 10 years after the end of the contract.

Your rights with regard to the processing of your personal data

In particular, you have the following rights with respect to your personal data:

  • Right to information about personal data stored (Art. 15 DSGVO),
  • Right to rectification if the data stored concerning you are inaccurate, outdated or incorrect (Art. 16 DSGVO),
  • Right to deletion if the storage is inadmissible, fulfils the purpose of the processing and the storage is therefore no longer necessary or you have withdrawn your consent to the processing of certain personal data (Art. 17 DSGVO),
  • Right to limitation of processing if one of the conditions set out in Art. 18 Abs. 1 lit. a) bis d) DSGVO is met (Art. 18 DSGVO),
  • Right to transfer personal data provided by you (Art. 20 DSGVO),
  • Right to revoke a consent given, the revocation not affecting the lawfulness of the processing previously carried out on the basis of the consent (Art. 7 Abs. 3 DSGVO) and
  • Right to appeal to a supervisory authority (Art. 77 DSGVO). 

Responsible for us:

State Data Protection and Freedom-of-Information Officer of North Rhine-Westphalia, P.O. Box 20 04 44, 40102 Düsseldorf, Tel. +49 211 384 24-0, Fax: +49 211 38424-10
E-Mail: poststelle@ldi.nrw.de

Right to object

You may object to the processing of your personal data for purposes of direct marketing within the scope of the existing customer relationship at any time.

After receipt of the objection, we will no longer process the personal data for the purposes of direct marketing and will delete the data if processing is not required for other purposes (e.g. to fulfil the contract).

You may also object to other processing which we base on a legitimate interest within the meaning of Art. 6 para. 1 lit. f DSGVO.

Data protection information for server log files and provision of this website

Each time you access our website, our system automatically collects data and information from the computer system of the accessing computer.

The following data is collected:

  • Information about the browser type and the version used
  • The user's operating system
  • The user's internet service provider
  • The user's IP address
  • Date and time of access
  • Websites from which the user's system accesses our website
  • Websites accessed by the user's system through our website.

The data is also stored in the log files of our system. These data are not stored together with other personal data of the user.

The legal basis for the temporary storage of data and system log files is Art. 6 Abs. 1 lit. f DSGVO.

The storage in system log files takes place in order to ensure the functionality of our website. The data is also used to optimize the website and to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context.

The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. If the data is stored in system log files, this is the case after seven days at the latest. A storage beyond this is possible. In this case, the IP addresses of the users are deleted or alienated so that it is no longer possible to identify the requesting web service client.

If you have any questions about data protection, please contact us using the contact data given above.

Data protection information according to Art.13 DSGVO

Release: July 02, 2020