We welcome you on our website and appreciate your interest in our company. We take the protection of your personal data very seriously. We process your data in accordance with the applicable legal provisions for the protection of personal data, in particular the EU General Data Protection Regulation (GDPR) and the country-specific implementation laws applicable to us. With the help of this data protection declaration, we inform you comprehensively about the processing of your personal data by SUSPA GmbH and the rights to which you are entitled.
Personal data is information that makes it possible to identify a natural person. This includes in particular name, date of birth, address, telephone number, e-mail address but also your IP address.
Anonymous data exists when no personal reference to the user can be made.
SUSPA GmbH
Industriestraße 12 - 14
90518 Altdorf bei Nürnberg
Phone: +49 9187 930 0
info(at)de.suspa.com
www.suspa.com
Contact of the data protection officer: datenschutz(at)de.suspa.com
First of all, we would like to inform you at this point about your rights as a data subject. These rights are regulated in Art. 15 - 22 GDPR. This includes:
To assert these rights, please contact: datenschutz(at)de.suspa.com. The same applies if you have questions about data processing in our company. You also have the right to lodge a complaint with a data protection supervisory authority.
Please note the following in connection with rights of objection:
If we process your personal data for the purpose of direct marketing, you have the right to object to this data processing at any time without giving reasons. This also applies to profiling, insofar as it is related to direct advertising.
If you object to processing for direct marketing purposes, we will no longer process your personal data for these purposes. The objection is free of charge and can be made form-free, if possible to: datenschutz(at)de.suspa.com.
In the event that we process your data to protect legitimate interests, you may object to this processing at any time for reasons arising from your particular situation; this also applies to profiling based on these provisions.
We will then no longer process your personal data unless we can demonstrate compelling legitimate interests for the processing which override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.
When processing your personal data, we comply with the provisions of the GDPR and all other applicable data protection regulations. Legal bases for data processing result in particular from Art. 6 GDPR.
We use your data to initiate business, to fulfill contractual and legal obligations, to carry out the contractual relationship, to offer products and services and to strengthen the customer relationship, which may also include analyses for marketing purposes and direct advertising.
Your consent also constitutes a permission requirement under data protection law. Here, we will inform you about the purposes of the data processing and about your right of revocation. If the consent also refers to the processing of special categories of personal data, we will explicitly point this out to you in the consent.
Processing of special categories of personal data within the meaning of Art. 9(1) GDPR will only take place if this is required by legal provisions and there is no reason to assume that your legitimate interest in the exclusion of the processing outweighs this.
We will only pass on your data to third parties within the framework of the statutory provisions or with the corresponding consent. Otherwise, we will not disclose your data to third parties unless we are required to do so by mandatory legal provisions (disclosure to external bodies such as supervisory authorities or law enforcement agencies).
Within our company, we ensure that only those persons receive your data who need it to fulfill contractual and legal obligations. Your data will go to affiliated companies or sales contact to fulfill your requests, which you can find in the following list: www.suspa.com/global/contact/international-contact-partners.
In many cases, service providers support our specialist departments in fulfilling their tasks. The necessary data protection contract has been concluded with all service providers. We transmit certain data that is generated during surfing to marketing service providers for data analysis.
A data transfer to third countries (outside the European Union or the European Economic Area) takes place in principle only insofar as this is necessary for the processing of your requests and implementation of the debt relationship, is required by law, or you have given us your consent to do so. In case of corresponding (contact) inquiries, contact data in third countries may be forwarded to the corresponding SUSPA entity or sales contact. A list of all affiliated companies and sales contacts in the respective countries can be found in the following listing: www.suspa.com/global/contact/international-contact-partners
We store your data as long as it is needed for the respective processing purpose. Please note that numerous retention periods require that data continues to be stored. This applies in particular to retention obligations under commercial or tax law (e.g. German Commercial Code, German Fiscal Code, etc.). If there are no further storage obligations, the data is routinely deleted after the purpose has been achieved.
In addition, we may retain data if you have given us your permission to do so or if legal disputes arise and we use evidence within the scope of statutory limitation periods, which can be up to thirty years; the regular limitation period is three years.
In order to protect the data stored by us in the best possible way against accidental or intentional manipulation, loss, destruction or access by unauthorized persons, we use appropriate technical and organizational security measures. The security levels are continuously reviewed in cooperation with security experts and adapted to new security standards.
The exchange of data to and from our website is always encrypted. We offer HTTPS as the transmission protocol for our website, in each case using the current TLS 1.2 encryption protocols. In addition, we offer our users content encryption as part of the contact forms. The decryption of this data is only possible for us. In addition, there is the option of using alternative communication channels (e.g., the postal service).
Various personal data are necessary for the establishment, implementation and termination of the contractual relationship and the fulfillment of the associated contractual and legal obligations. The same applies to the use of our website and the various functions it provides.
We have summarized details of this for you in the above point. In certain cases, data must also be collected or made available due to legal requirements. Please note that it is not possible to process your request or carry out the underlying contractual relationship without providing this data.
Which data we process is determined by the respective context: this depends on whether, for example, you place an order online, enter an inquiry in our contact form or submit a complaint. Please note that we may also provide information for special processing situations separately in a suitable place, e.g. in the case of a contact request.
When you visit our website, we collect and process the following data:
When you visit our website, we briefly collect your full IP address so that we can automatically offer you our website in the language of your country. Your IP address is not stored by us, but is immediately discarded after selection of the language. In this respect, your address is not transmitted to third parties. We base this on our legitimate interest according to Art. 6 Para. 1 lit. f GDPR to want to offer an attractive and easily accessible Internet presence.
A contact form is available on our website which can be used to contact us electronically. If you write us using the contact form, we will process the data you submitted in the contact form to respond to your queries and requests.
In so doing, we respect the principle of data minimisation and data avoidance, such that you only have to provide the information we require to contact you, which is your email address and the message field itself as well as the postal code and the country from which you contact us. Your IP address will also be processed for technical reasons and for legal protection. All other data is voluntary, and additional fields are optional (e.g. to provide a more detailed response to your questions).
If you contact us by e-mail, we will process the personal data provided in the e-mail solely for the purpose of processing your request. If you do not use the forms offered for contacting us, no further data collection will take place.
Within the framework of the CAD configurator, there is another contact form that can be used for electronic contact. If you write to us via the contact form, we will process the data you provide in order to contact you and create an individual offer.
For this purpose, we pass on your contact request to the responsible persons at the relevant SUSPA company. If you contact us from a country in which SUSPA does not operate its own branch, your data will be forwarded to our responsible local contact person. This is done due to the legitimate interest according to Art. 6 para. 1 lit. f GDPR on our part to get in touch with you in an uncomplicated and quick way. You have the right to object to this. A list of the SUSPA companies that may be responsible for you can be found here: www.suspa.com/global/contact/international-contact-partners.
Your personal data (first and last name, e-mail address, telephone number, the company you work for, address (address, postal code, city, country) and indication of quantity) may be processed in order to contact you and to prepare an individual offer.
To protect the security and confidentiality of your data in the best possible way, we implement appropriate security measures. Your request will be transmitted to us in encrypted form. In addition, your IP address is processed for technical necessity as well as for legal protection.
We store your data for as long as it is needed to process your request. Please note that numerous retention periods require that data continues to be stored. This applies in particular to retention obligations under commercial or tax law (e.g. Commercial Code, Fiscal Code, etc.).
We are aware of the importance of your data and process the personal data you provide as part of the application process only for the purpose of effective and correct processing of the application process and for contacting you as part of the application process. There will be no disclosure of data to third parties without your consent.
In order to protect the security and confidentiality of your data as best as possible, we implement appropriate security measures. Of course, you can also communicate with us in encrypted form for the transmission of sensitive data by e-mail. For this purpose, we can offer you various encryption methods. Please contact us if you wish to do so.
We store your data for the above-mentioned purposes until the application process has been completed and any deadlines in this regard have expired - at the latest six months after receipt of a decision.
We do not use any purely automated processing processes to bring about a decision
Our website uses so-called cookies. They serve to make our Website more user-friendly, effective and secure. Cookies are small text files that are stored on your terminal device and that your browser stores (locally). Cookies contain only pseudonymous, usually even anonymous data. Some cookies remain for the duration of a browser session (so-called session cookies), others are stored for a longer period of time (so-called persistent cookies, e.g. Consent settings). The latter are automatically deleted after the respective specified time (usually 6 months). In addition to our own cookies, we also use cookies that are controlled by third-party providers. These use the information contained in the cookies, for example, to display content to you or to record the pages you visit.
Based on our legitimate interest (Art. 6 para. 1 p. 1 lit. f GDPR), we set technically necessary cookies, which are mandatory for the operation of the website and to ensure its functionality. Furthermore, we use cookies without your consent, insofar as their sole purpose is the storage of or access to information stored in the terminal device for the transmission of messages or these are absolutely necessary in order to be able to provide the service expressly requested by you, § 25 para. 2 TDDDG.
Assuming your consent, further cookies are used, by means of which we or third parties can, for example, evaluate how our services are used. This allows us to design the content according to user needs. In addition, the cookies give us the opportunity to measure the effectiveness of a particular advertisement and to have it placed, for example, depending on the thematic user interests. The legal basis for this is your explicit consent (Art. 6 para. 1 p. 1 lit. a GDPR, § 25 para. 1 TDDDG).
You can revoke your consent via our Consent banner at any time with effect for the future and change the cookie settings. Please note that changes must be made separately for each end device.
If you maintain accounts with the third-party providers we use and are logged in there, your data may be linked to the respective account. You can avoid such a combination by not granting or revoking your consent to the relevant cookies or by logging out of the respective third-party providers in advance.
Most browsers accept cookies automatically. You can also deactivate, restrict or delete cookies on your end device manually via your browser settings or software-supported. If you deactivate the setting of cookies, the full use of our website is not possible or only possible to a limited extent.
Please also note our instructions in the section of the respective service that uses cookies.
This website uses Google Analytics, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google"), based on your consent (Art. 6 para. 1 p. 1 lit. a GDPR, as well as § 25 para. 1 TDDDG). Google Analytics uses so-called "cookies". These are text files that are stored on your terminal device and enable an analysis of your use of the website. The information stored in this way is usually transferred to a Google server in the USA and stored there. If IP anonymization is activated, your IP address will be shortened before data transmission and within the European Union or contracting states of the European Economic Area. An unabbreviated transmission of the full IP address to Google will only take place in exceptional cases.
On behalf of the operator of this website, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage to the website operator. In addition, location and device data may also be processed. The IP address transmitted by your browser as part of Google Analytics will not be merged with other data from Google.
The users' personal data is deleted or anonymized after 14 months.
Google processes and stores your data in the USA. Compliance with the European level of data protection for data transfer and processing in third countries is ensured by corresponding contractual regulations and guarantees. Data processing or storage in third countries can also take place on the basis of your consent (Art. 49 para. 1 p. 1 lit. a GDPR), in which case you will be informed separately of this, as well as the possibility of revocation, when obtaining your consent.
For more information on terms of use and data protection, please visit https://www.google.com/analytics/terms/de.html and https://policies.google.com/?hl=de.
You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) to Google and the processing of this data by Google by downloading and installing the browser plugin available at the following link: http://tools.google.com/dlpage/gaoptout?hl=de.
You can revoke your consent via our Consent banner at any time with effect for the future and change the cookie settings. Please note that changes must be made separately for each end device.
This website uses the IP anonymization function of Google Analytics. Furthermore, an order data processing agreement has been concluded with Google. You also have the option of deactivating Google Analytics using a browser add-on.
You can find more information about this at https://support.google.com/analytics/answer/6004245 (general information about Google Analytics and data protection).
We use the service called Google Tag Manager from Google. "Google" is a group of companies and consists of Google Ireland Ltd (provider of the service), Gordon House, Barrow Street, Dublin 4, Ireland as well as Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA and other affiliated companies of Google LLC.
The Google Tag Manager is an auxiliary service and processes personal data itself only for technically necessary purposes. The Google Tag Manager takes care of loading other components, which in turn may collect data. The Google Tag Manager itself does not access this data. However, a connection to Google servers is already established for the use of the Google Tag Manager. Further information on the Google Tag Manager can be found in Google's privacy policy.
The Google Tag Manager is only activated if consent to the use of Google Analytics has been given via the Consent banner (Art. 6 para. 1 lit. a GDPR).
If the data is transferred to the USA in the process, there is a risk that your data may be processed by US authorities for control and monitoring purposes without you possibly having any legal remedies.
On our website you will find links to the social media services of Facebook, Instagram, YouTube, Xing and LinkedIn. You can recognize links to the websites of the social media services by the respective company logo. If you follow these links, you will reach the company website of SUSPA GmbH at the respective social media service. When you click on a link to a social media service, a connection to the servers of the social media service is established. This transmits to the servers of the social media service that you have visited our website. In addition, further data is transmitted to the provider of the social media service. These are, for example:
If you are already logged in to the corresponding social media service at the time the link is activated, the provider of the social media service may be able to determine your user name and possibly even your real name from the transmitted data and assign this information to your personal user account with the social media service. You can exclude this possibility of assignment to your personal user account if you log out of your user account beforehand.
The servers of the social media services are located in the USA and other countries outside the European Union. The data may therefore be processed by the provider of the social media service in countries outside the European Union. Please note that companies in these countries are subject to data protection laws that do not generally protect personal data to the same extent as they do in the member states of the European Union. Please note that we have no influence on the scope, type and purpose of the data processing by the provider of the social media service. For more information on the use of your data by the social media services integrated on our website, please refer to the privacy policy of the respective social media service.
SUSPA GmbH maintains presences in the "social media", presently at Facebook, Instagram, YouTube, Xing and LinkedIn. As far as we have control over the processing of your data, we ensure that the applicable data protection provisions are complied with. In the following, you will find the most important information on data protection law with regard to our appearances.
Name and address of the person responsible for the company: In addition to SUSPA GmbH, the person responsible for the company appearances within the meaning of the EU General Data Protection Regulation (GDPR) and other data protection regulations is.
However, you use these platforms and their functions on your own responsibility. This applies in particular to the use of the interactive functions (e.g. commenting, sharing, rating). We would also like to point out that your data may be processed outside the European Union.
Purpose and legal basis: We ourselves maintain the fan pages in order to communicate with visitors to these pages and to inform them about our offers in this way. In addition, we collect data for statistical purposes in order to be able to further develop and optimize the content and to make our offer more attractive. The data required for this purpose (e.g. total number of page views, page activity and data provided by visitors, interactions) are processed by the social networks and made available to us. We have no influence on the generation and presentation. In addition, your personal data is processed by the providers of the social media, for market research and advertising purposes. It is possible, for example, that usage profiles are created based on your usage behavior and the resulting interests. This allows, among other things, advertisements to be placed within and outside the platforms that correspond to your interests. Cookies are usually stored on your computer for this purpose. Independently of this, data that is not collected directly on your end devices may also be stored in your usage profiles. The storage and analysis also takes place across devices; this applies in particular, but not exclusively, if you are registered as a member and logged in to the respective platforms. Beyond that, we do not collect or process any personal data. The processing of your personal data by SUSPA GmbH is based on our legitimate interests in effective information and communication pursuant to Art. 6 para. 1 sentence 1 lit. f. GDPR. If you are asked for consent to data processing, i.e. if you declare your consent by confirming a button or similar (opt-in), the legal basis of the processing is Art. 6 para. 1 sentence 1 lit. a., Art. 7 GDPR.
Your rights / option to object
If you are a member of a social network and do not want the network to collect data about you via our presence and link it to your stored membership data with the respective network, you must
After logging in again, however, you will once more be recognizable to the network as a specific user. For a detailed description of the respective processing and the opt-out options, please refer to the information linked below:
YouTube
Overall, you have the following rights regarding the processing of your personal data:
Right to information; Right to rectification; Right to erasure; Right to restriction of processing; Right to object; Right to data portability; Right to complain about unlawful processing of your personal data to the competent data protection authority. However, since SUSPA GmbH does not have complete access to your personal data, you should contact the providers of the social media directly when asserting your rights, because they each have access to the personal data of their users and can take appropriate measures and provide information. If you still need help, we will of course try to support you. Please contact us at datenschutz(at)de.suspa.com.
Notes on copyright and art copyright: If you want to publish pictures, texts, plans, videos, music, etc. on our website, you should know that you may thereby assign all rights of use to the network, which could ultimately have legal consequences for you if you are not the author or rights holder yourself.
YouTube is a video portal of YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA (hereinafter "YouTube"). In our online services, we have integrated at least one PlugIn from YouTube, which is initially inactive. When you activate the PlugIn, your browser establishes a direct connection with the YouTube servers based on your consent. This transmits the information to YouTube that your browser has visited the corresponding page of our online services, even if you do not have a YouTube account or are not logged into your account. This information is transmitted by your browser directly to a YouTube server in the USA and stored there. If you are logged into your YouTube account at the same time, it is also possible to assign the page view to your YouTube account and you would enable YouTube to assign your surfing behavior directly to your personal profile.
If you wish to prevent this transmission and storage of your data and your behavior on our online services by YouTube, you must log out of YouTube before visiting our site and delete any cookies placed by YouTube. For more information on the collection and use of your data by YouTube, please visit https://www.google.com/policies/privacy/.
Please note that in this context, personal data may be processed in a third country, the USA. Compliance with the European level of data protection for data transfer and processing in third countries is ensured through corresponding contractual regulations and guarantees. Data processing or storage in third countries can also take place on the basis of your consent (Art. 49 para. 1 p. 1 lit. a GDPR), in which case you will be informed separately of this, as well as the possibility of revocation, when obtaining your consent. The legal basis for the use of the PlugIn is (Art. 6 para. 1 lit. a GDPR, § 25 para. 1 TDDDG).
This site uses the map service Google Maps via an API. The provider is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.
To use the functions of Google Maps, it is necessary to store your IP address. This information is usually transferred to a Google server in the USA and stored there. The provider of this site has no influence on this data transmission.
The use of Google Maps is in the interest of an appealing presentation of our online offers and an easy location of the places indicated by us on the website.
We have obtained your consent for the processing of your data as described above in accordance with Art. 6 para. 1 p. 1 lit. a GDPR, § 25 para. 1 TDDDG. You can revoke your consent at any time with effect for the future. In this case, an opt-out cookie will be stored in your browser, which prevents information from being transmitted to and stored by Google.
To exercise your revocation and decide again on the use of Google Maps for the future, please either follow the option described above to make an objection or switch to the contact page (www.suspa.com/global/contact).
More information on the handling of user data can be found in Google's privacy policy: https://policies.google.com/privacy?hl=de
Persons under the age of 16 are not permitted to transmit personal data to us or provide a declaration of consent without the consent of their legal guardians. We encourage parents and guardians to actively participate in their children's online activities and interests.
The information on these pages is provided without warranty of any kind, including, but not limited to, any express or implied warranties of merchantability, fitness for a particular purpose, or non- infringement. SUSPA GmbH reserves the right not to be responsible for the topicality, correctness, completeness or quality of the information provided.
Our website also contains - clearly recognizable - links to the websites of other companies. Insofar as there are links to websites of other providers, we have no influence on their content. Therefore, no guarantee or liability can be assumed for these contents. The respective provider or operator of the pages is always responsible for the content of these pages.
The linked pages were checked for possible legal violations and recognizable infringements at the time of linking. Illegal contents were not recognizable at the time of linking. However, a permanent control of the contents of the linked pages is not reasonable without concrete evidence of a violation of the law. If we become aware of any infringements, such links will be removed immediately.
