Privacy Policy
Thank you for your interest in our company. Data protection is a matter of particular importance to the management of Gasolution GmbH. In general, our website can be used without providing any personal data. However, if a data subject wishes to use special services offered through our website, it may become necessary to process personal data. Where such processing is required and there is no statutory basis for it, we generally obtain the data subject’s consent.
The processing of personal data, such as name, address, email address or telephone number, is always carried out in line with the General Data Protection Regulation (GDPR) and in accordance with the country-specific data protection provisions applicable to Gasolution GmbH. With this privacy policy, we inform the public about the nature, scope and purpose of the personal data we collect, use and process, and we explain the rights to which data subjects are entitled.
As the controller, Gasolution GmbH has implemented numerous technical and organisational measures to ensure the most complete protection possible of personal data processed through this website. Nevertheless, internet-based data transmissions can generally have security gaps, so absolute protection cannot be guaranteed. For this reason, every data subject is free to transmit personal data to us by alternative means, for example by telephone.
1. Definitions
This privacy policy uses the terminology adopted by the European legislator when enacting the GDPR.
- Personal data means any information relating to an identified or identifiable natural person (“data subject”).
- Data subject means any identified or identifiable natural person whose personal data is processed.
- Processing means any operation performed on personal data, whether or not by automated means, such as collection, recording, storage, alteration, retrieval, use, disclosure, restriction, or erasure.
- Restriction of processing means the marking of stored personal data with the aim of limiting its future processing.
- Profiling means any automated processing of personal data used to evaluate certain personal aspects of a natural person.
- Pseudonymisation means processing personal data in such a way that it can no longer be attributed to a specific data subject without additional information.
- Controller means the body which, alone or jointly with others, determines the purposes and means of the processing of personal data.
- Processor means a body which processes personal data on behalf of the controller.
- Recipient means a body to which personal data is disclosed.
- Third party means any body other than the data subject, the controller, the processor, and persons authorised to process data under their direct authority.
- Consent means any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which they agree to the processing of their personal data.
2. Name and Address of the Controller
The controller within the meaning of the GDPR is:
Gasolution GmbH
Kleine Buderusstraße 5
59427 Unna
Germany
Phone: +49 2303 2302910
Email: info@gasolution.eu
Website: www.gasolution.eu
3. Cookies
Our website uses cookies – text files stored on a computer system via an internet browser. A cookie ID allows a specific browser to be recognised and distinguished from other browsers. Using cookies allows us to provide visitors to our website with more user-friendly services that would not be possible without the cookie setting.
Data subjects can prevent the setting of cookies through our website at any time via the settings of the browser used, and can thereby permanently object to the setting of cookies. Cookies that have already been set can be deleted at any time. If cookies are deactivated, it may not be possible to use all functions of our website to their full extent.
4. Collection of General Data and Information
Our website collects a range of general data and information with every access, which is stored in the server’s log files. This can include the browser type and version, the operating system used, the referring page, the sub-pages accessed, the date and time of access, the IP address, the internet service provider, and similar data used to defend against attacks.
We do not draw any conclusions about the data subject from this data. It is used to correctly deliver and optimise the content of our website, to ensure the ongoing functionality and IT security of our systems, and, if necessary, to provide law enforcement authorities with the information required for prosecution in the event of a cyberattack. This anonymously collected data is stored separately from any personal data provided by a data subject.
5. Option to Make Contact via the Website
Due to statutory provisions, our website contains information that enables quick electronic contact and direct communication with us, including a general email address. If a data subject contacts us by email or via a contact form, the personal data transmitted is stored automatically and used solely for processing the enquiry or for making contact. This data is not passed on to third parties.
6. Routine Erasure and Restriction of Personal Data
We process and store personal data only for as long as is necessary to achieve the purpose of storage, or as provided for by applicable laws and regulations. Once the purpose for storage no longer applies, or a prescribed retention period expires, the personal data is routinely blocked or erased in accordance with statutory provisions.
7. Rights of the Data Subject
Under the GDPR you have, in particular, the following rights, which you may assert at any time by contacting an employee of Gasolution GmbH:
- Right of confirmation as to whether personal data concerning you is being processed.
- Right of access to the stored data, the purposes of processing, recipients, and the intended storage period, including a free copy.
- Right to rectification of inaccurate or incomplete personal data.
- Right to erasure (“right to be forgotten”) where one of the statutory grounds under Art. 17 GDPR applies.
- Right to restriction of processing under the conditions of Art. 18 GDPR.
- Right to data portability in a structured, commonly used, machine-readable format.
- Right to object to processing under Art. 6(1)(e) or (f) GDPR, in particular to direct marketing.
- Right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you.
- Right to withdraw any data protection consent given, with effect for the future.
To exercise these rights, please use the contact details given in Section 2. You also have the right to lodge a complaint with a data protection supervisory authority.
8. Data Protection in Job Applications
We collect and process applicants’ personal data for the purpose of handling the application process, including by electronic means (e.g. email or a web form). If an employment contract is concluded, the data transmitted is stored for the purpose of processing the employment relationship in accordance with statutory provisions. If no contract is concluded, application documents are automatically deleted two months after notification of the rejection decision, unless deletion conflicts with other legitimate interests (e.g. the need to provide evidence in proceedings under the German General Equal Treatment Act).
9. Legal Basis for Processing
Depending on the processing operation, we rely on Art. 6(1)(a) GDPR (consent), (b) (performance of a contract or pre-contractual measures), (c) (a legal obligation, e.g. tax obligations), (d) (protection of vital interests), or (f) (legitimate interest), where none of the other legal bases applies.
10. Legitimate Interests Pursued
Where processing is based on Art. 6(1)(f) GDPR, our legitimate interest is the conduct of our business for the benefit of our employees and shareholders.
11. Storage Period
The criterion for the duration of storage of personal data is the respective statutory retention period. After that period expires, the data is routinely deleted, provided it is no longer required for the performance or initiation of a contract.
12. Statutory or Contractual Requirements to Provide Data
The provision of personal data may in part be required by law (e.g. tax regulations) or may result from contractual arrangements (e.g. details about the contracting party). Without the necessary data, we may be unable to conclude a contract with you. Before data is provided, we will clarify in each individual case whether it is mandatory and what consequences would follow if it were not provided.
13. Automated Decision-Making
As a responsible company, we do not use automated decision-making or profiling.
This privacy policy was created with the help of a GDPR privacy policy generator, in cooperation with a law firm specialising in data protection law. This English page is a courtesy translation of the German privacy policy; in case of any discrepancy, the German version is legally binding.