STÜKEN MEANS MORE
With our precision parts, we implement solutions that even experts would not have considered feasible. We combine complex technologies, finishing processes and services and achieve results that add value for our customers.
Privacy Policy
Mandatory data protection information in accordance with the EU GDPR
I. Introduction
This privacy policy contains mandatory information regarding the processing of your personal data (referring to the European GDPR).
II. Responsible entity
Hubert Stüken GmbH & Co. KG
Alte Todemanner Straße 42
31737 Rinteln
Germany
+49 5751 7020
info@stueken.de
With this privacy policy, we as the responsible entity comply with our duty to provide information in accordance with Articles 12-14 of the GDPR.
Below you will find information about which personal data (this is all data that identifies you as a natural person (hereinafter referred to as "data subject") or makes you identifiable, such as your name, address, email address, or user behavior) we collect during your visit to our website and how it is used. Data subjects are visitors to our website and users of our online services.
We reserve the right to amend the content of this privacy policy. This usually occurs in the event of further development or legal adjustments.
III. Data protection officer
If you have any questions about data protection, please contact our data protection officer, Mr. Thomas Werning.
He can be reached at: werning.com GmbH - Dieselstraße 12 - 32791 Lage -
dsb-hubert-stueken-ri@werning.com - +49 5232 980-4700
IV. Rights of data subjects
Right to lodge a complaint
If you believe that the processing of your personal data violates the General Data Protection Regulation, you have the right to lodge a complaint with the data protection supervisory authority responsible for us, the State Commissioner for Data Protection of Lower Saxony (LfD), or with any other data protection supervisory authority.
Right of revocation
You may revoke any consent you have given with effect for the future in accordance with Art. 7 GDPR.
Advertising and right to object
Your surname, first name, email address, and postal address are also collected for advertising purposes (sending offers, information about additional services). You can object to processing for advertising purposes at any time without giving reasons by contacting us at: marketing@stueken.de
Right to information, deletion, and correction
In accordance with Art. 15 GDPR, you have the right to obtain information about the data stored about you, including any recipients and the planned storage period. If incorrect personal data is processed, you have the right to rectification in accordance with Art. 16 GDPR. If the legal requirements are met, you can request the erasure or restriction of processing and object to the processing (Art. 17, 18, and 21 GDPR).
If you wish to have your data deleted but we are still legally obliged to retain it, access to your data will be restricted (blocked). The same applies in the event of an objection. You can claim your right to data portability as long as the technical capabilities are available at the recipient's end and at ours.
Mr. Thomas Werning is available to assist you with your data subject rights at the email address: dsb-hubert-stueken-ri@werning.com
V. Information on data collection and processing within the company
Below you will find information on which personal data (this is all data that identifies you as a natural person (hereinafter "data subject") or makes you identifiable) may be collected.
This includes, for example:
- Customer master data for contract execution/performance of the service, name, address, email address, data in connection with payment processing, correspondence (e.g., written correspondence or email correspondence with you), advertising and sales data (e.g., for information about new potentially interesting offers by mail or, with your consent, also by email)
- Data from initial contacts such as name, telephone number, email address
- Supplier data such as name, telephone number, email address
- Employee data such as name, address, bank details, religious affiliation,
personnel number, social security number, log data generated when using IT systems, and other and special categories of personal data - Applicant data such as name, address, email address, marital status, religious affiliation
- Data based on video surveillance
VI. Purposes of processing
VI. 1. Customer/prospective customer data
We process data that we receive during our business relationship with you.
We receive this data directly from you – either when you submit an inquiry or contact request, when you place an order, or when we process an order.
Legal basis:
Data collection and processing are necessary for the performance of the contract and are based on Art. 6 (1) (b) GDPR.
The use for direct marketing is based on Art. 6 (1) lit. f) GDPR.
It is in our legitimate interest to draw your attention to special offers by means of direct marketing.
The data will not be passed on to third parties unless required by law, e.g., to the tax office within the framework of tax laws.
The data will be deleted as soon as it is no longer required for the purpose of its processing or after the expiry of the statutory retention periods (e.g., accounting documents relevant for tax and commercial law: 10 years; commercial and business letters: 6 years; records of suppliers, type, quantity, purchase, delivery: 3 years).
You have the right to object to the use of your data for direct marketing purposes at any time.
In addition, you are entitled to request information about the data we have stored about you and, if the data is incorrect, to request its correction or, if the data storage is inadmissible, to request its deletion.
You also have the right to lodge a complaint with a supervisory authority (see section "Right to lodge a complaint").
Duration of storage
After the contractually agreed service has been provided, your personal data will be stored for 24 months for the purpose of the statutory warranty or, if a different period has been agreed, for up to 5 years after delivery of the goods in accordance with the contractual agreement. Contract documents are generally stored for 15 years in accordance with statutory retention periods or those prescribed by certification bodies, or in accordance with individual contractual agreements.
Deletion of data
Your personal data will be deleted at the latest after the expiry of the aforementioned periods.
VI. 2. Suppliers
We process data that we receive during our business relationship with you.
We receive the data directly from you when you place an order or during order processing.
Legal basis:
Data collection and data processing are necessary for the performance of the contract and are based on Art. 6 (1) (b) GDPR.
The data will not be passed on to third parties unless required by law, e.g., to the tax office within the framework of tax laws.
The data will be deleted as soon as it is no longer required for the purpose of its processing or after the expiry of the statutory retention periods (e.g., accounting documents relevant for tax and commercial law: 10 years; commercial and business letters: 6 years; records of suppliers, type, quantity, purchase, delivery: 3 years).
You are entitled to request information about the data we have stored about you and, if the data is incorrect, to request its correction or, if the data storage is inadmissible, to request its deletion.
You also have the right to lodge a complaint with a supervisory authority (see "Right to lodge a complaint").
VI. 3. Employee data
Employee data is treated separately in an internal data protection declaration for employees and is not part of this online declaration.
VI. 4. Video surveillance
Our purpose for video surveillance is to prevent vandalism, protect against theft, enforce property rights, protect people and property, protect against industrial espionage, control access, and prevent burglary.
As the responsible entity, we only view the image files upon written request from the Managing Directors of the company and in the presence of the works council if one of the above events has occurred (see works agreement). The storage period is 4 weeks.
Legal basis:
Art. 6 (1) (f) GDPR.
Our legitimate interest lies in burglary protection, the protection of our property, and access control.
This data will only be passed on to investigating authorities in the event of criminal offenses.
VI. 5. Applicants
Applications by email, online, or post:
If you apply to us in response to a job advertisement or on your own initiative, we will collect and process your personal data—such as your first name, last name, address, telephone number, email address, and the information contained in your application documents (cover letter, resume, references, photo)—exclusively for the purpose of processing your application.
When you send us your application documents, please confirm that you have read our privacy policy and agree to the processing of your personal data.
Your data will only be used by authorized personnel in the human resources department or management as part of the selection process.
Your personal data will not be passed on to third parties.
If the specific position you are applying for has already been filled, but your profile makes you a suitable candidate for future employment or employment at a partner or subsidiary company, we will obtain your express consent before further storing or forwarding your application – unless you have already consented to such storage or forwarding in your application.
If you apply on your own initiative via our general contact email address, the content of your application email may be viewed by personnel who are not authorized to do so.
There is a requirement that application documents be forwarded to the human resources department unopened and that the incoming email be deleted.
If you wish to prevent this, please contact us by telephone before submitting your unsolicited application so that we can provide you with the contact details of the relevant contact person.
Legal basis:
Art. 6 (1) (b) GDPR (processing of pre-contractual measures).
Unless you inform us otherwise, the data will be deleted 6 months after completion of the application process or destroyed in the case of postal applications.
Due to longer selection periods for trainees, application data may be stored for up to 18 months.
You have the right to request information about the data stored about you, to have incorrect data corrected, to request the deletion of data stored unlawfully, or to object to its processing.
In addition, you have the right to lodge a complaint with a supervisory authority.
VII. Intention to process data in third countries
If there is an intention to process personal data in a third country, information must be provided on the existence or absence of an adequacy decision by the Commission. In the absence of such an adequacy decision, the website operator must describe the appropriate and suitable safeguards (primarily of a technical and organizational nature) that are in place for the data transfer. The operator must offer the possibility of obtaining a copy of the explanations of these safeguards. Further details can be found in Art. 13 (1) (f) GDPR. The processing reference to a third country described above will be particularly relevant if the selected service provider is based in a third country, collects the data or stores the data collected via the website on its own servers and can access it, or uses a third party's servers and can access the usage data.
VIII. Categories of recipients
While providing our services, we use service providers who are separately bound to confidentiality and data protection for specific areas where access to personal data cannot be ruled out.
These categories of recipients are:
- Processors employed by us (Art. 28 GDPR), particularly in the areas of IT services, logistics, and facility management, who process your data for us in accordance with our instructions.
- Public authorities and institutions (tax authorities) in the event of a legal or official obligation.
- Other bodies for which you have given us your consent to transfer data.
Data will only be passed on to authorities if there are overriding legal provisions.
IX. Obligation to provide data
Without correct information from you, it is generally not possible to conclude a contract.
X. Here you will find information about data processing on our website
X. 1. Website in general
Purposes of processing
The purpose of data processing on this website is to present the company, provide services, sell products, and communicate via the Internet. The purpose of data processing on this website is to provide information about our company's products and services and to process applications, with the option for users to contact specific contact persons within the company.
General
If you have provided us with personal data, we use it to respond to your inquiries, to advise you and process contracts concluded with you, and for technical administration. Your personal data will only be passed on to third parties or otherwise transferred if this is necessary for the purpose of contract processing or billing, or if you have given your prior consent. You have the right to revoke your consent at any time with effect for the future (see Right of revocation).
The legal basis for the collection, processing, and transfer of data within the scope of contract processing is Art. 6 (1) (b) GDPR.
This data will be deleted after the expiry of the applicable statutory retention obligations. If we are not subject to any statutory retention obligations, the data will be deleted when the purpose ceases to apply.
You have the right to access and object to your data stored by us at any time. Further information can be found under "Rights of data subjects" and "Right of revocation."
X. 2. Server data collection
Purpose of processing
When you visit our site, various server statistics are automatically stored, which your browser transmits to our provider's server: Among other things, the IP address of your device, the date and time of access, the name and URL of the files accessed, the website from which you accessed our site or from which you were redirected to our site (referrer URL), the browser used and, if applicable, the operating system of your device and the name of your provider are logged.
The aforementioned data is processed by our provider for the purposes of establishing a smooth connection and ensuring system security. This data is not merged with other data sources. The connection data is automatically deleted, usually after seven days. If the website is misused, log data that needs to be retained for evidence purposes will be stored until the incident has been clarified.
The legal basis is Art. 6 (1) (f) GDPR and § 25 (2) TDDDG. Our legitimate interest arises from our desire to ensure the secure operation of the website and to detect any attacks.
X. 3. Contact form and email inquiries
Purpose of processing
When you use our contact form, we collect and store your name and email address for the purpose of responding to your inquiry. Providing your telephone number for a callback is optional. If you send us a contact request by email, we collect and store your email address and the data contained in the email.
The legal basis is Art. 6 (1) (a) GDPR, as you consent to the above processing of your data when using the form or sending an email. In addition, the legal basis also arises from Art. 6 (1) (b), as the storage of the data is necessary for the fulfillment of a pre-contractual or possibly later contractual relationship.
The data will be deleted when the purpose of storage no longer applies, i.e., after your email/contact form request has been answered or when the matter associated with the request has been finally clarified.
You have the right to revoke your consent at any time without affecting the lawfulness of the processing carried out on the basis of your consent.
You can find information on your right to deletion and information under "Rights of data subjects."
X. 4. Cookies
Purpose of processing
Cookies are data records (previously only small text files) that are stored in your internet browser (e.g., Firefox, Google Chrome, Microsoft Explorer/Edge, Safari, etc.) or by it on your computer (i.e., your operating system) when you visit our site. With the help of cookies, which contain a specific character string and, if necessary, further information, our website recognizes your Internet browser when you visit it. We use our own cookies, so-called session cookies. These are used to manage the use of the website via a login area. These cookies are only valid for the duration of your browser session and are deleted when you leave our site.
The legal basis for our own cookies is Art. 6 (1) lit. f GDPR and § 25 (1) TDDDG. Our legitimate interest arises from the fact that we only use the aforementioned cookies to make it easier for you to access the site, do not collect any tracking data, and therefore do not interfere with your personal rights and fundamental freedoms.
You can disable cookies in your web browser. However, this may lead to impairments in functionality.
We use cookies/applications from the following third-party providers:
Cookies