Privacy Policy

Data privacy statement

Data privacy is of particular importance in our company. Generally speaking, using the website is possible without providing personal data. However, if an affected person would like to make use of special services of our company online, processing personal data may be required. If the processing of personal data is necessary and there is no legal basis for such processing, we generally obtain the consent of the person concerned.

The processing of personal data, for example the name, address, e-mail address or telephone number of a person concerned, is always carried out in accordance with the Federal Data Protection Act (BDSG), the EU General Data Protection Regulation (GDPR) and other applicable laws. With this data privacy declaration, our company would like to inform you about the type, scope and purpose of the personal data processed by us and inform the persons concerned about their rights.

Our company has implemented numerous technical and organisational measures to ensure the most complete possible protection of the processed personal data. Nevertheless, generally speaking, Internet-based data transmissions can have security gaps, so that absolute protection cannot be guaranteed.

1 Definition of¬ terms

The data privacy declaration of our company is based on the GDPR. Our data privacy declaration should be easy to read and understand. In order to guarantee this, we explain the terms used in advance:

1.1 Personal data

Personal data is "any information relating to an identified or identifiable natural person (hereinafter referred to as the "data subject"); an identifiable natural person is one who can be identified directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, online identifier or one or more specific characteristics that are an expression of the physical, physiological, genetic, psychological, economic, cultural, or social identity of that natural person" (GDPR Art. 4 Par.1).

1.2 Affected person

Data subject means any identified or identifiable natural person whose personal data is processed by the responsible controller.

1.3 Processing

Processing refers to any operation or set of operations which is carried out with or without the aid of automated processes and which relates to personal data, such as collection, recording, organisation, sorting, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or association, qualification, deletion or destruction.

1.4 Restriction of processing

Restriction of processing is the marking of stored personal data with the aim of limiting its future processing.

1.5 Profiling

Profiling is any automated processing of personal data in which such personal data is used to evaluate certain personal aspects relating to a natural person, in particular to analyse or predict aspects relating to the work performance, economic situation, health, personal preferences, interests, reliability, behaviour, whereabouts, or movements of that natural person.

1.6 Pseudonymisation

Pseudonymisation is the processing of personal data where the personal data can no longer be attributed to a specific data subject without additional information. This additional information is kept separately and is subject to technical and organisational measures to ensure that the personal data is not assigned to an identified or identifiable natural person.

1.7 Responsible controller or person responsible for the processing

The responsible controller or person responsible for processing is the natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing of personal data.

1.8 Contract processor

Processor is a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.

1.9 Recipient

The recipient is a natural or legal person, public authority, agency or other body to whom personal data is disclosed, regardless of whether that person is a third party or not. However, authorities which may receive personal data in the course of a specific investigation task under Union law or the law of the Member States shall not be considered as recipients.

1.10 Third party

Third party means any natural or legal person, public authority, agency or body other than the data subject, the controller, the processor and the persons authorised to process the personal data under the direct responsibility of the controller or processor.

1.11 Consent

Consent shall mean any voluntary, informed and unambiguous expression by the data subject of his or her will in the particular case, in the form of a statement or other unequivocal confirmatory act, indicating that he or she consents to the processing of his or her personal data.

2 Name and address of the person responsible for processing

Responsible within the meaning of the GDPR is:

Bott GmbH & Co. KG

Bahnstrasse 17

74405 Gaildorf

E-Mail: datenschutz@bott.de

www.bott.de

3 Contact details of our external data privacy¬ officer

Mr Michael Gruber

BSP-SECURITY

Franz-Mayer-Str. 1

93053 Regensburg

Tel. +49 (0) 941 46 29 09 29

info@bsp-security.de

www.bsp-security.de

Every person concerned can contact our data privacy officer directly with all questions and suggestions regarding data privacy.

4 Cookies

The websites of our company use cookies. Cookies are text files that are stored on a computer system via an Internet browser.

Numerous websites and servers use cookies. Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier of the cookie. It consists of a string of characters through which website pages and servers can be assigned to the specific Internet browser in which the cookie was stored. This enables the visited websites and servers to distinguish the individual browser of the person concerned from other Internet browsers that contain other cookies. A particular Internet browser can be recognised and identified by its unique cookie ID. The use of cookies enables Bott GmbH & Co. KG to provide users of this website with more user-friendly services that would not be possible without the setting of cookies.

By means of a cookie, the information and offers on our website can be optimised in the interest of the user. As already mentioned, cookies enable us to recognise the users of our website. The purpose of this recognition is to make it easier for users to use our website. Here, e.g., the user of a website that uses cookies does not have to re-enter his access data each time he visits the website because this is taken over by the website and the cookie stored on the user's computer system. Another example is the cookie of a shopping cart in the online shop. The online shop remembers the items a customer has placed in the virtual shopping cart via a cookie.

The person concerned can prevent the setting of cookies by our website at any time by means of an appropriate setting of the Internet browser used and thus permanently object to the setting of cookies. Apart from this, cookies that have already been set can be deleted at any time via an Internet browser or other software programmes. This is possible in all common Internet browsers. If the person concerned deactivates the setting of cookies in the Internet browser used, it might occur that not all functions of our website can be used fully under certain circumstances.

5 Collection of general data and information

Bott GmbH & Co. KG's web servers collects a series of general data and information each time the website is accessed by an affected person or an automated system. This general data and information is stored in the log files of the server. The browser types and versions used, the operating system used by the accessing system, the website from which an accessing system accesses our website, the sub-sites which are accessed via an accessing system on our website, the date and time of access to the website, an Internet protocol address (IP address), the Internet service provider of the accessing system and other similar data and information which serve to avert dangers in the event of attacks on our IT systems can be recorded.

When using this general data and information, Bott GmbH & Co. KG does not draw any conclusions about the person concerned. Rather, this information is required to correctly deliver the content of our website, to optimise the content of our website and the advertising for it, to guarantee the long-term functionality of our information technology systems and the technology of our website and to provide law enforcement authorities with the information necessary for criminal prosecution in the event of a cyber attack. This anonymous data and information collected by Bott GmbH & Co. KG will therefore be evaluated statistically and with the purpose of increasing data privacy and data security in our company which, ultimately, ensures an optimum level of protection for the personal data processed by us. The anonymous data of the server log files are stored separately from all personal data provided by the person concerned.

6 Contact possibility via the website

Due to legal regulations, the website of our company contains information that enables us to contact our company quickly by electronic means and to communicate directly with us, which also includes a general address of the so-called electronic mail (e-mail address). If a data subject contacts the data controller by e-mail or via a contact form, the personal data transmitted by the data subject is automatically stored. Such personal data transmitted voluntarily by a data subject to the controller is stored for processing purposes or for contacting the data subject. This personal data will not be passed on to third parties.

7 Routine deletion and blocking of personal data

The controller shall process and store the personal data of the data subject only for the period necessary so as to achieve the purpose of the processing or, where provided for by law or regulation, to comply with the laws to which the controller is subject. If the storage purpose no longer applies or if a storage period prescribed by law expires, the personal data shall be blocked or deleted routinely in accordance with the statutory provisions.

8 Rights of the data subject

8.1 Right to confirmation

Any data subject shall have the right to obtain confirmation from the controller as to whether personal data relating to him or her is being processed. If a data subject wishes to exercise this right of confirmation, he or she may at any time contact our data privacy officer or another employee of the controller.

8.2 Right to information

Any person concerned by the processing of personal data shall have the right to obtain from the controller, free of charge, information on the personal data relating to him or her which has been stored and a copy of that information, together with the information provided herein:

  • the purposes of the processing
  • the categories of personal data processed
  • the recipients or categories of recipients to whom the personal data has been or will be disclosed, in particular recipients in third countries or international organisations
  • if possible, the planned duration for which the personal data will be stored or, if that is not possible, the criteria for determining that duration
  • the existence of a right to the rectification or deletion of personal data concerning him or her or to the limitation of the processing carried out by the controller or of a right to object to such processing
  • the existence of a right of appeal to a supervisory authority
  • if the personal data is not collected from the data subject: All available information on the origin of the data
  • the existence of automated decision-making, including profiling in accordance with Article 22 (1) and (4) GDPR and - at least in these cases - meaningful information on the logic involved and the scope and intended impact of such processing on the data subject

The data subject also has the right to know whether personal data has been transferred to a third country or to an international organisation. If this is the case, the data subject shall also have the right to obtain information on the appropriate safeguards in connection with the transfer.

If a data subject wishes to exercise this right of access, he or she can contact our data privacy officer at any time.

8.3 Right to rectification

Any affected person who is subject to the processing of personal data has the right to obtain the rectification without delay of inaccurate personal data concerning him or her. Furthermore, having regard to the purposes of the processing, the data subject shall have the right to request the completion of incomplete personal data, including by means of a supplementary statement.

If a data subject wishes to exercise this right of rectification, he or she can contact our data privacy officer at any time.

8.4 Right to deletion (right to be forgotten)

Any affected person who is subject to the processing of personal data shall have the right to obtain from the controller the deletion without delay of the personal data concerning him or her, provided one of the following reasons applies and where the processing is not necessary:

  • Personal data was collected or otherwise processed for purposes for which they are no longer necessary.
  • The data subject shall revoke the consent on which the processing was based pursuant to Art. 6 Par. 1 a GDPR or Art. 9 Par. 2 a GDPR and there shall be no other legal basis for the processing.
  • The person concerned submits objection against the processing in accordance with Art. 21 Par. 1 GDPR, and there are no prior legitimate reasons for the processing, or the person concerned submits an objection against the processing in accordance with Art. 21 Par. 2 GDPR.
  • Personal data has been processed unlawfully.
  • The deletion of personal data is necessary to fulfil a legal obligation under Union law or the law of the Member States to which the data controller is subject.
  • The personal data has been collected in relation to information society services offered in accordance with Art. 8 Par. 1 GDPR.

If one of the above reasons applies and a person concerned wishes to have personal data stored by our company deleted, he or she can contact our data privacy officer at any time. Our data privacy officer will ensure that the request for deletion is complied with immediately.

If our company has made the personal data public and if our company is obliged to delete personal data in accordance with Art. 17 Par. 1 GDPR, our company shall take appropriate measures, including technical measures, to ensure that other persons responsible for data processing who process the published personal data is informed, taking into account the available technology and the implementation costs, to inform the data subject that he/she has requested these other data controllers to delete all links to these personal data or copies or replications of these personal data, insofar as the processing is not necessary. The data privacy officer will take the necessary steps in individual cases.

8.5 Right to limitation of processing

Any affected person subject to the processing of personal data has the right, as granted by the European directive and regulation, to request the controller to limit the processing if one of the following conditions is met:

  • The accuracy of the personal data shall be contested by the data subject for a period of time which allows the controller to verify the accuracy of the personal data.
  • The processing is unlawful, the data subject refuses the deletion of the personal data and instead requests the restriction of the use of the personal data.
  • The controller no longer needs the personal data for the purposes of processing, but the data subject needs it for the assertion, exercise or defence of legal rights.
  • The affected person has lodged an objection to the processing in accordance with Art. 21 Par. 1 GDPR and it is not yet clear whether the legitimate reasons of the data controller outweigh those of the data subject.

If one of the above conditions is met and an affected person concerned wishes to request the restriction of personal data stored by our company, he can contact our data privacy officer at any time. The data privacy officer will arrange for the processing to be restricted.

8.6 Right to data transferability

Any affected person who is subject to the processing of personal data has the right to obtain personal data concerning him or her which has been provided by the data subject to a controller in a structured, common and machine-readable format. This person also has the right to communicate this data to another data controller without being hindered by the controller to whom the personal data has been provided, subject to the proviso that the processing is based on the consent pursuant to Art. 6 Par. 1 a GDPR or Art. 9 Par. 2 a GDPR or on a contract pursuant to Art. 6 Par. 1 b GDPR, and the processing is carried out using automated procedures, provided that the processing is not necessary for the performance of a task in the public interest or in the exercise of official authority assigned to the controller.

Furthermore, the affected person has the right, when exercising his or her right to data transferability in accordance with Art. 20 Par. 1 GDPR, to have the personal data be transmitted directly by a responsible person to another responsible person, insofar as this is technically feasible and insofar as the rights and freedoms of other persons are not affected by this.

In order to assert the right to data transferability, the person concerned can contact the data privacy officer appointed by us at any time.

8.7 Right of opposition

Any person who is affected by the processing of personal data has the right to object at any time, for reasons related to his/her particular situation, to the processing of personal data concerning him/her carried out pursuant to Art. 6 par. 1 e or f GDPR. This also applies to profiling based on these provisions.

In the event of objection, our company will no longer process the personal data unless we can prove compelling grounds for processing that are worthy of protection and which outweigh the interests, rights and liberties of the person concerned, or the processing serves to assert, exercise or defend legal claims.

If our company processes personal data in order to conduct direct advertising, the person concerned has the right to object at any time to the processing of personal data for the purpose of such advertising. This also applies to profiling, to the extent that it is connected with such direct advertising. If the affected person objects to our company processing the data for direct marketing purposes, we will no longer process the personal data for these purposes.

In addition, the data subject has the right to object to the processing of personal data concerning him/her by our company for scientific or historical research purposes or for statistical purposes in accordance with Art. 89 Par. 1 GDPR for reasons arising from his particular situation, unless such processing is necessary for the performance of a task in the public interest.

In order to exercise the right to object, the person affected may contact the data privacy officer directly.

8.8 Automated decisions in individual cases, including profiling

Any data subject who is affected by the processing of personal data shall have the right not to be subjected to a decision based solely on automated processing, including profiling, which shall have legal effects for him or her or significantly affects him or her in a similar manner, unless the decision is necessary for the conclusion or performance of a contract between the data subject and the data subject or for the performance of a contract between the data subject and the responsible controller.

(b) the data subject is required to be covered by the legislation of the Union or of the Member States to which the data subject is subject, and that legislation contains appropriate measures to safeguard the rights and liberties and the legitimate interests of the data subject or is adopted with the express consent of the data subject.

Where a decision is necessary for the conclusion or performance of a contract between the data subject and the data controller or with the express consent of the data subject, our company shall take reasonable steps to safeguard the rights, the liberties and the legitimate interests of the data subject, including, at least, the right to have the data subject interven, to state his or her views and to challenge the decision.

If the data subject wishes to assert rights relating to automated decisions, he or she can contact our data privacy officer at any time.

8.9 Right to revoke consent under data privacy law

Any affected person who is subject to the processing of personal data has the right to withdraw consent to the processing of personal data at any time. If the data subject wishes to revoke his/her consent, he/she can contact our data privacy officer at any time.

9 Data privacy for applications and in the application process

The data controller collects and processes the personal data of applicants for the purpose of processing the application procedure. Processing may also be carried out electronically. This is the case, in particular, if an applicant submits corresponding application documents to our company electronically, for example by e-mail or via a web form on the website. If our company concludes an employment contract with an applicant, the data transmitted will be stored for the purpose of processing the employment relationship in compliance with the statutory provisions. If our company does not conclude an employment contract with the applicant, the application documents will be deleted automatically 6 months after notification of the rejection decision, provided that no other legitimate interests of the data controller conflict with such deletion. Other legitimate interests within this meaning include, for example, a duty to provide evidence in proceedings under the General Equal Treatment Act (AGG).

10 Data privacy¬regulations: Tracking tools

Privacy policy for use of Google Analytics and Google Tag Manager

The data controller has integrated the Google Analytics component (with anonymisation function) on this website. Google Analytics is a web analysis service. Web analysis is the acquiring, collection and evaluation of data about visitors' behaviour to website pages. Among other things, a web analysis service collects data regarding from which website page a person concerned came to a website page (so-called referrers), which subpages of the website page were accessed, or how often and for how long a subpage was viewed. A web analysis is primarily used to optimise a website and to analyse the costs and benefits of Internet advertising.

The operating company of the Google Analytics component is Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.

The data controller uses the addition "_gat._anonymizeIp" for the web analysis via Google Analytics. This addition is used by Google to shorten and anonymise the IP address of the Internet connection of the person concerned if access to our website pages is from a Member State of the European Union or from another Contracting State to the Agreement on the European Economic Area.

The purpose of the Google Analytics component is to analyse the flow of visitors to our website. Among other things, Google uses the data and information obtained to evaluate the use of our website, to compile online reports for us showing the activities on our website and to provide other services in connection with the use of our website.

Google Analytics places a cookie on the information technology system of the person concerned. It has already been explained above what cookies are. When the cookie is set, Google is able to analyse the use of our website. Each time you access one of the individual pages of this website, which is operated by the data controller and on which a Google Analytics component has been integrated, the Internet browser on the information technology system of the person concerned is automatically prompted by the respective Google Analytics component to transmit data to Google for the purpose of online analysis. As part of this technical process, Google obtains knowledge of personal data, such as the IP address of the person concerned, which Google uses, among other things, to track the origin of visitors and clicks and subsequently to enable commission statements.

The cookie is used to store personal information such as access time, the location from which the user accessed our website and the frequency with which the person concerned visited our website. Each time you visit our website pages, this personal data, including the IP address of the Internet connection used by the person concerned, is transferred to Google in the USA. This personal data is stored by Google in the USA. Google may share this personal information collected through the technical process with third parties.

The person concerned can prevent the setting of cookies by our website at any time, as described above, by means of an appropriate setting of the Internet browser used and thus permanently object to the setting of cookies. Such an Internet browser setting would also prevent Google from setting a cookie on the information technology system of the person concerned. Apart from this, a cookie already set by Google Analytics can be deleted at any time via the Internet browser or other software programmes.

Furthermore, the person concerned can object to and prevent the collection of data generated by Google Analytics with the help of the Google Tag Manager and relating to the use of this website and the processing of this data by Google. To do this, the person concerned must download and install a browser add-on under the link: https://tools.google.com/dlpage/gaoptout This browser add-on tells Google Analytics via JavaScript that no data and information about visits to website pages may be transmitted to Google Analytics. The installation of the browser add-on is considered a contradiction by Google. If the data subject's information technology system is deleted, formatted or reinstalled at a later date, the data subject must reinstall the browser add-on in order to deactivate Google Analytics. If the browser add-on is deinstalled or deactivated by the person concerned or by another person within his/her sphere of control, the browser add-on may be reinstalled or reactivated.

Alternatively, you can object to the entry by clicking on the following link: Click here to be excluded from Google Tag Manager capture.

More information and Google's current privacy policy can be found at: https://www.google.de/intl/de/policies/privacy and at: https://www.google.com/analytics/terms/de.html . Google Analytics is explained in more detail at this link: https://www.google.com/intl/de_de/analytics .

Google Remarketing Privacy Policy on the Use and Usage of Google Remarketing

The data controller has integrated Google Remarketing services on this website. Google Remarketing is a Google AdWords feature that enables a company to display advertisements to Internet users who have previously been on the company's website. The integration of Google Remarketing therefore allows a company to create user-related advertisements and consequently to display advertisements of interest to the Internet user.

Google Remarketing services are operated by Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.

The purpose of Google Remarketing is to display advertisements that are relevant to your interests. Google Remarketing enables us to display advertisements via the Google advertising network or on other websites that are tailored to the individual needs and interests of Internet users.

Google Remarketing places a cookie on the information technology system of the person concerned. It has already been explained above what cookies are. The setting of cookies enables Google to recognise visitors to our website when they subsequently visit websites that are also members of the Google advertising network. Each time a website is accessed on which the Google Remarketing service has been integrated, the Internet browser of the person concerned automatically identifies itself to Google. As part of this technical process, Google obtains knowledge of personal data, such as the IP address or surfing behaviour of the user, which Google uses, among other things, to display advertisements relevant to the interests of the user.

The cookie is used to store personal information, such as the website pages visited by the person concerned. Accordingly, each time you visit our website, personal data, including the IP address of the Internet connection used by the person concerned, is transferred to Google in the USA. This personal data is stored by Google in the USA. Google may share this personal information collected through the technical process with third parties.

As described above, the person concerned can prevent the setting of cookies by our website at any time by using a setting of the Internet browser used and thus permanently object to the setting of cookies. Such an Internet browser setting would also prevent Google from setting a cookie on the information technology system of the person concerned. Apart from this, a cookie already set by Google Analytics can be deleted at any time via the Internet browser or other software programmes.

In addition, the person concerned has the opportunity to object to the interest-related advertising by Google. To do this, the data subject must access the link at www.google.de/settings/ads from any of the Internet browsers he or she uses and make the desired settings there.

Further information and the valid data privacy regulations of Google can be called up under:https://www.google.de/intl/de/policies/privacy

Privacy policy for the use of Google AdWords

The person responsible for the processing has integrated Google AdWords on this website. Google AdWords is an Internet advertising service that allows advertisers to place ads both in Google's search engine results and in the Google advertising network. Google AdWords allows an advertiser to pre-define keywords that will be used to display an ad in Google's search engine results only when the user uses the search engine to retrieve a keyword relevant search result. In the Google advertising network, the ads are distributed to topic-relevant website pages using an automatic algorithm and taking into account the previously defined keywords.

The operating company of the Google AdWords services is Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.

The purpose of Google AdWords is to promote our website by displaying advertisements of interest on the website pages of third parties and in the search engine results of Google and by displaying third-party advertising on our website.

If a person concerned visits our website via a Google advertisement, a so-called conversion cookie is stored on the information technology system of the person concerned by Google. It has already been explained above what cookies are. A conversion cookie loses its validity after thirty days and does not serve to identify the person concerned. If the cookie has not yet expired, the conversion cookie is used to track whether certain subpages, such as the shopping cart of an online shop system, have been accessed on our website. The conversion cookie enables both us and Google to track whether a person who came to our website via an AdWords ad generated any turnover, i.e. completed or cancelled a purchase.

The data and information collected through the use of the conversion cookie is used by Google to compile visit statistics for our website. In turn, these visit statistics are used by us to determine the total number of users who were referred to us via AdWords ads, i.e. to determine the success or failure of the respective AdWords ad and to optimise our AdWords ads for the future. Neither our company, nor any other Google AdWords advertisers receive information from Google by means of which the person concerned could be identified.

The conversion cookie is used to store personal information, such as the website pages visited by the person concerned. Accordingly, each time you visit our website, personal data, including the IP address of the Internet connection used by the person concerned, is transferred to Google in the USA. This personal data is stored by Google in the USA. Google may share this personal information collected through the technical process with third parties.

The person concerned can prevent the setting of cookies by our website at any time, as described above, by means of an appropriate setting of the Internet browser used and thus permanently object to the setting of cookies. Such a setting of the Internet browser used would also prevent Google from setting a conversion cookie on the information technology system of the person concerned. In addition, a cookie already set by Google AdWords can be deleted at any time via the Internet browser or other software programmes.

In addition, the person concerned has the opportunity to object to the interest-related advertising by Google. To do this, the data subject must access the link at www.google.de/settings/ads from any of the Internet browsers he or she uses and make the desired settings there.

Further information and the valid data privacy regulations of Google can be called up under: https://www.google.de/intl/de/policies/privacy.

Privacy Policy on the Deployment and Usage of YouTube

The person responsible for the processing has integrated YouTube components on this website. YouTube is an Internet video portal that allows video publishers to post video clips and other users to view, rate and comment on them free of charge. YouTube allows the publication of all types of videos, which is why complete film and television programmes, but also music videos, trailers or videos made by users themselves can be accessed via the Internet portal.

YouTube is operated by YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA. YouTube, LLC is a subsidiary of Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.

Each time one of the individual pages of this website is accessed, which is operated by the data controller and on which a YouTube component (YouTube video) has been integrated, the Internet browser on the information technology system of the person concerned is automatically prompted by the respective YouTube component to download a representation of the corresponding YouTube component from YouTube. More information on YouTube can be accessed at: https://www.youtube.com/yt/about/de. As part of this technical process, YouTube and Google gain knowledge of which specific subpage of our website is visited by the person concerned.

If the person concerned is logged in to YouTube at the same time, YouTube recognises which specific subpage of our website the person concerned is visiting by calling up a subpage containing a YouTube video. This information is collected by YouTube and Google and assigned to the respective YouTube account of the person concerned.

YouTube and Google receive information via the YouTube component that the person concerned has visited our website, if the person concerned is logged into YouTube at the same time as accessing our website; this occurs regardless of whether the person concerned clicks on a YouTube video or not. If such transmission of this information to YouTube and Google is not intended by the person concerned, he/she can prevent the transmission by logging out of his/her YouTube account before accessing our website.

The data privacy regulations published by YouTube, which can be accessed at: https://www.google.de/intl/de/policies/privacy, provide information about the collection, processing and use of personal data by YouTube and Google.

Privacy policy for the use of Facebook Remarketing

This website uses the remarketing function "Custom Audiences" of Facebook Inc. ("Facebook"). This function is used to present interest-based advertisements ("Facebook Ads") to visitors to this website as part of their visit to the Facebook social network. For this purpose, the remarketing tag of Facebook was implemented on this website. This tag establishes a direct connection to the Facebook servers when you visit the website. The Facebook server is notified that you have visited this website and Facebook assigns this information to your personal Facebook user account. For more information about Facebook's collection and use of this information and about your rights and choices in protecting your privacy, please see Facebook's Privacy Notice at: : https://www.facebook.com/about/privacy

Alternatively, you can deactivate the remarketing function "Custom Audiences" at: https://www.facebook.com/settings/?tab=ads#_=_. You must be logged in to Facebook to do this.

Privacy Policy for the use of Microsoft Bing Ads

We use the offer of Microsoft Bing ads to draw attention to our attractive offers with the help of advertising material on external websites. In relation to the data of the advertising campaigns, we can determine how successful the individual advertising measures are. In so doing, we track your interest in displaying advertising that is of interest to you, increasing the attractiveness of our website for you and achieving a fair calculation of advertising costs. The legal basis for the processing of your data is Art. 6 Par. 1 S. 1 lit. f GDPR.

These advertising media are delivered by Microsoft via corresponding servers. We use cookies for this purpose, which can be used to measure certain parameters for measuring success, such as the display of ads or clicks by users. If you access our website via a Bing ad, Bing ads stores a cookie in your PC. These cookies usually lose their validity after 30 days and are not intended to identify you personally. For this cookie, the unique cookie ID, number of ad impressions per placement (frequency), last impression (relevant for post-view conversions) and opt-out information (marking that the user no longer wishes to be addressed) are usually stored as analysis values.

These cookies allow Microsoft to recognise your Internet browser. If a user visits certain pages of a Bing Ads customer's website and the cookie stored on their computer has not expired, Microsoft and the customer may recognise that the user clicked on the ad and was directed to that page. Each Bing Ads customer is assigned a different cookie. Thus, cookies cannot be traced through Bing Ads customers' websites. We ourselves do not collect or process any personal data in the aforementioned advertising measures. We only receive statistical evaluations from Microsoft. These evaluations enable us to identify which of the advertising measures used are particularly effective. We do not receive any further data from the use of the advertising media, in particular we cannot identify the users on the basis of this information.

Due to the marketing tools used, your browser automatically establishes a direct connection with the Microsoft server. We have no influence on the extent and further use of the data collected by Microsoft through the use of this tool and therefore inform you according to our state of knowledge: Through the integration of Bing Ads, Microsoft receives the information that you have called up the relevant part of our website or clicked on an advertisement from us. If you are registered with a Microsoft service, Microsoft may assign the visit to your account. Even if you are not registered with Microsoft or have not logged in, it is possible that the provider may find out and store your IP address.

You can prevent participation in this tracking process in various ways:

Alternatively, you can visit the Network Advertising Initiative (NAI) website at: https://www.networkadvertising.org .

Further information on data privacy at Bing Ads can be found here: https://advertise.bingads.microsoft.com/de-de/ressourcen/richtlinien/user-safety-and-privacy-policies, as well as data privacy at Microsoft in general: https://privacy.microsoft.com/de-de/privacystatement.

Microsoft has submitted to the EU-US Privacy Shield: https://www.privacyshield.gov/EU-US-Framework.

Privacy Policy on the Deployment and Usage of LinkedIn

The data controller has integrated LinkedIn Corporation components into this website. LinkedIn is an Internet-based social network that enables users to connect to existing business contacts and to make new business contacts. More than 400 million registered users use LinkedIn in more than 200 countries. This makes LinkedIn the currently largest platform for business contacts and one of the most visited websites in the world.

LinkedIn is operated by LinkedIn Corporation, 2029 Stierlin Court Mountain View, CA 94043, USA. For privacy matters outside the United States, LinkedIn Ireland, Privacy Policy Issues, Wilton Plaza, Wilton Place, Dublin 2, Ireland, is responsible.

Each time you visit our website that is equipped with a LinkedIn component (LinkedIn plug-in), this component causes the browser used by the individual to download a corresponding representation of the LinkedIn component. More information about the LinkedIn plug-ins can be found at https://developer.linkedin.com/plugins. As part of this technical process, LinkedIn obtains knowledge of which specific subpage of our website is visited by the person concerned.

If the person concerned is logged in to LinkedIn at the same time, LinkedIn recognises which specific subpage of our website the person concerned is visiting each time the person visits our website and for the entire duration of that person's stay on our website. This information is collected by the LinkedIn component and assigned by LinkedIn to the respective LinkedIn account of the person concerned. If the person concerned is logged in to LinkedIn at the same time, LinkedIn recognises which specific subpage of our website the person concerned is visiting each time the person visits our website and for the entire duration of that person's stay on our website.

LinkedIn receives information through the LinkedIn component that the person concerned has visited our website whenever that person is logged in to LinkedIn at the same time as our website is viewed; this occurs whether or not the person clicks on the LinkedIn component. If such a transfer of this information to LinkedIn is not intended by the person concerned, he or she can prevent the transfer by logging out of his or her LinkedIn account before accessing our website.

LinkedIn at https://www.linkedin.com/psettings/guest-controls provides the ability to unsubscribe from e-mail messages, SMS messages, targeted ads, and manage ad settings. LinkedIn also uses partners such as Quantcast, Google Analytics, BlueKai, DoubleClick, Nielsen, Comscore, Eloqua and Lotame who can set cookies. Such cookies may be declined at https://www.linkedin.com/legal/cookie-policy. LinkedIn's current privacy policy can be found at https://www.linkedin.com/legal/privacy-policy . LinkedIn's cookie policy is available at https://www.linkedin.com/legal/cookie-policy

Privacy information for the use of Aumago Discover

We cooperate with Aumago GmbH, a provider of web analysis and target group marketing. Aumago uses so-called cookies, a text file which is stored in the browser of the computer and collects/contains anonymous usage data. This data can be used to create user profiles under a pseudonym. However, no personal data is collected. If IP addresses are collected, they are stored anonymously by deleting the last number block and are not merged with the cookies. The cookies are either Aumago cookies or cookies from service providers used by Aumago, such as krux digital Inc., Google Inc., etc. The user can delete the cookies directly in his browser at any time. Aumago uses this data to evaluate the use of the website by visitors and for the purpose of usage-based online advertising (OBA).

Privacy information for the use of Hotjar

We use Hotjar to better understand the needs of our users and to optimise the offerings on this website. Hotjar's technology helps us better understand our users' experiences (e.g. how much time users spend on which pages, which links they click, what they like and dislike, etc.) and helps us tailor our offerings to our users' feedback. Hotjar uses cookies and other technologies to collect information about the behaviour of our users and their devices (including, but not limited to, the IP address of the device (collected and stored only in an anonymous form), screen size, device type (Unique Device Identifiers), information about the browser used, location (country only), preferred language for viewing our website). Hotjar stores this information in a pseudonymous user profile. The information will not be used by Hotjar or by us to identify individual users or merged with other information about individual users. For more information, please see Hotjar's Privacy Policy: https://www.hotjar.com/legal/policies/privacy.

You may opt out of Hotjar storing a user profile and information about your visit to our website and Hotjar setting tracking cookies on other websites when you click on them: https://www.hotjar.com/legal/compliance/opt-out.

Data privacy information for the use of LivePerson

This website uses LivePerson technology for the chat integrated on the website. LivePerson has robust security measures that meet and exceed multiple security requirements, including GDPR compliance. For more information about LivePerson and the GDPR, please visit this GDPR resource page: https://www.liveperson.com/policies/gdpr-data-privacy.

Applicant Privacy Policy (Art. 13 Basic Data Protection Regulation (GDPR))

This data privacy declaration informs you about the processing of your personal data during the application process at Bott GmbH & Co. KG According to Art. 4 No. 1 GDPR, your personal data includes all information that relates or can be related to your person.

Personal information and personal data

During your employment, we collect and process information (both paper and digital). This information may include:

  • name
  • address
  • date of birth
  • place of birth
  • religious affiliation
  • marital status
  • Wage and salary data
  • pay scale classification
  • qualification data
  • appraisals

Where appropriate, information on disability and other health data may also be included.

Purposes of collection and processing

Bott GmbH & Co. KG processes your personal data solely for the purposes of recruiting employees and for business purposes in connection therewith.

The data controller collects and processes the personal data of applicants for the purpose of processing the application procedure. Processing may also be carried out electronically. This is the case, in particular, if an applicant submits the relevant application documents electronically, for example by e-mail or via a web form on the website, to the data controller. If the data controller concludes an employment contract with an applicant, the data transmitted will be stored and processed for the purpose of processing the employment relationship in accordance with the statutory provisions.

Your data privacy rights

You have the following rights against us with regard to your personal data:

  • Right to information,
  • Right to rectification or deletion,
  • Right to limit the processing,
  • Right to object to the processing,
  • Right to data transferability.

If you have any questions regarding your rights and the exercise of your rights, please contact the human resources department or the company data protection officer.

Legal basis for the processing of your personal data

Legal basis for the processing of your personal data for purposes of the employment relationship is § 26 of the BDSG, Art. 6 Par. 1 lit. b GDPR (contract fulfilment) and on Art. 6 Par. 1 lit. f GDPR (legitimate interest of the company). A legitimate interest may arise, for example, for internal organisational and administrative purposes. A processing of your data is only permitted if the protection of your interests, fundamental rights and fundamental freedoms does not prevail.

We can also obtain the applicant's consent to the processing or transmission of your data. Your consent in these cases is voluntary and, unless otherwise agreed, can be revoked by you at any time for the future.

Responsible body for the processing of your personal data

The competent and responsible body for the processing and your personal data is Bott GmbH & Co. KG.

Duration of storage

If the controller does not conclude a contract of employment with the candidate, the application file shall be automatically deleted no later than six months after notification of the refusal decision, unless deletion conflicts with any other legitimate interests of the controller. Other legitimate interests within this meaning include, for example, a duty to provide evidence in proceedings under the General Equal Treatment Act (AGG).

Complaints about the processing of your personal data

If you have any concerns or questions about the processing of your personal data, you can contact your Human Resources department, the external data protection officer or the data protection supervisory authority.

External Data Privacy Officer:

Mr Michael Gruber

BSP-SECURITY

Franz-Mayer-Str 1

D-93053 Regensburg

E-mail: michael.gruber@bsp-security.de

11 Competent data protection supervisory authority

The State Commissioner for Data Privacy and Freedom of Information

Königstrasse 10 a

70173 Stuttgart

Germany

Phone: +49 (0) 711 615541-0 Fax: +49 (0) 711 615542-15

E-mail: poststelle[at]lfdi.bwl.de

12 Changes to the Privacy ¬Policy

We reserve the right to change our security and data protection regulations as far as this becomes necessary due to technical development. In these cases, we will also adapt our data protection information accordingly. Please note the current version of our data protection declaration.

(05/2018)