Status May 2024
This data protection information applies to data processing by:
REALTECH AG
Paul-Ehrlich-Strasse 1
69181 Leimen, Germany
Phone +49.6224.9871.100 (Please use our call-back service)
Fax +49.6224.9871.410
E-mail: [email protected]
Imprint
You can contact our company data protection officer at [email protected] or by post via our postal address. In the latter case, please label the envelope “Data Protection Officer”.
a) When you visit the website
When you visit our website www.realtech.com, the browser used on your device automatically sends information to the server of our website. This information is temporarily stored in a so-called log file for 8 weeks. The following information is collected without any action on your part and stored until it is automatically deleted:
- IP address of the requesting computer,
- date and time of access,
- name and URL of the retrieved file,
- website from which access is made (referrer URL),
- the browser used and, if applicable, the operating system of your computer and the name of your access provider.
We process the data for the following purposes:
- ensuring a smooth connection set-up to the website,
- to ensure a comfortable use of our website,
- evaluation of system security and stability, in particular detection of abuse, and
- for further administrative purposes.
The legal basis for data processing is Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest follows from the purposes for data collection listed above.
Under no circumstances do we use the data collected for the purpose of drawing conclusions about your person. However, we reserve the right to subsequently check the server log files if there are concrete indications of unlawful use. Recipients of the data may be technical service providers who act as processors for the operation and maintenance of our website.
We also use cookies and analysis services when you visit our website. You can find more detailed explanations on this in sections 8 and 9 of this privacy policy.
b) When using our contact form
For questions of any kind, we offer you the opportunity to contact us via a form provided on the website. It is necessary to provide a valid e-mail address so that we know who sent the enquiry and can answer it. Further information can be provided voluntarily. Data processing for the purpose of contacting us is carried out in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR based on your voluntarily given consent. The personal data collected by us for the use of the contact form will be automatically deleted after your enquiry has been dealt with.
c) Data processing in the company
We process personal data based on the data protection regulations of the General Data Protection Regulation (GDPR) as well as the Federal Data Protection Act (BDSG) and the State Data Protection Act of Baden-Württemberg (LDSG). The data of the following groups of persons are processed by the respective responsible persons in the company for the fulfilment of tasks. In detail, this means:
- Customer data is processed for the execution and support of the contractual relationship or the pre-contractual relationship as well as for contact enquiries and communication based on Art. 6 para. 1 sentence 1 letter b) GDPR and Art. 6 para. 1 sentence 1 letter c) GDPR.
- Personal data of our suppliers and service providers as well as their employees are processed for the initiation and execution of our contractual relationships based on Art. 6 para. 1 sentence 1 letter b) GDPR and Art. 6 para. 1 sentence 1 letter c) GDPR.
- Employee data is stored for the establishment, implementation and termination of employment relationships (Art. 88 GDPR, Section 26 BDSG).
- Applicant data is stored for the purpose of carrying out the application process and deciding on the establishment of an employment relationship (Art. 88 GDPR, Section 26 BDSG). Documents of unsuccessful applicants will be deleted four months after the end of the application process (see also Data Protection Information for Applicants and Interested Persons (f/m/d)).
The personal data stored by us will be deleted in accordance with legal requirements. We delete the data as soon as it is no longer required for the purpose of processing, consent has been revoked or other authorisations no longer apply.
Data that must still be stored, e.g. for commercial or tax law reasons, or whose storage is still required for the assertion, exercise or defence of legal claims, will be deleted as soon as this is no longer the case.
Your personal data will not be transferred to third parties for purposes other than those listed below. We only pass on your personal data to third parties if:
- you have given your express consent to this in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR,
- the disclosure pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR is necessary for the assertion, exercise or defence of legal claims and there is no reason to assume that you have an overriding interest worthy of protection in not disclosing your data,
- if there is a legal obligation for disclosure pursuant to Art. 6 para. 1 sentence 1 lit. c GDPR and
- this is legally permissible and necessary for the processing of contractual relationships with you in accordance with Art. 6 para. 1 sentence 1 lit. B GDPR.
We use the service “Cloudflare”. The provider is Cloudflare Inc, 665 3rd St. #200, San Francisco, CA 94107, USA.
Cloudflare offers a globally distributed content delivery network with DNS. Technically, the information transfer between your browser and our website is routed via Cloudflare’s network. This enables Cloudflare to analyse the data traffic between your browser and our website and to act as a filter between our servers and potentially malicious data traffic from the Internet. Cloudflare may also use cookies for this purpose, but these are used solely for the purpose described here.
We have concluded an order processing contract with Cloudflare. Cloudflare has made a commitment to us to handle all personal data received from the member states of the European Union (EU) in accordance with the GDPR and will be certified as a participant in the successor legal framework of the “EU-US Privacy Shield Framework” as soon as possible.
The use of Cloudflare is based on our legitimate interest in providing our website as error-free and secure as possible. Further information on security and data protection at Cloudflare can be found here:
https://www.cloudflare.com/privacypolicy.
Our website is hosted by our processor “HostPress”, HostPress GmbH, Bahnhofstr. 34, 66571 Eppelborn, Germany.
Connection data is processed for the purpose of providing and delivering the website. For the sole purpose of delivering and providing the website, the data is not stored beyond the call.
The legal basis for data processing is the legitimate interest (absolute technical necessity for the provision and delivery of the “website” service expressly requested by you by calling it up) in accordance with Art. 6 Para. 1 lit. f GDPR.
To operate the website, the connection data and other personal data are also processed as part of various other functions and services. Detailed information on this is provided in this privacy policy for the individual functions and services.
We have concluded a corresponding contract for order processing with the company HostPress. The HostPress servers are located exclusively in Germany: https://www.hostpress.de/en/datacenters. You can find HostPress’s data protection information here: https://www.hostpress.de/en/privacy-policy.
We use cookies on our website. These are small files that your browser automatically creates and that are stored on your end device (laptop, tablet, smartphone, etc.) when you visit our website. Cookies do not cause any damage to your end device and do not contain any viruses, Trojans or other malware. Information is stored in the cookie that results in each case in connection with the specific end device used. However, this does not mean that we obtain direct knowledge of your identity. On the one hand, the use of cookies serves to make the use of our website more pleasant for you.
We use so-called session cookies to recognize that you have already visited individual pages of our website. These are automatically deleted after you leave our website.
In addition, we also use temporary cookies to optimize user-friendliness, which are stored on your end device for a specified period. If you visit our website again to use our services, it is automatically recognized that you have already visited us and which entries and settings you have made so that you do not have to enter them again.
On the other hand, we use cookies to statistically record the use of our website and to evaluate it for the purpose of optimizing our offer for you (see section 5). These cookies enable us to automatically recognize that you have already visited our website when you visit it again. These cookies are automatically deleted after a defined period.
The data processed by cookies are necessary for the purposes mentioned to protect our legitimate interests and those of third parties in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR.
Most browsers accept cookies automatically. However, you can configure your browser so that no cookies are stored on your computer, or a message always appears before a new cookie is created. However, completely deactivating cookies may mean that you cannot use all the functions of our website.
View/Customize/Revoke the data protection settings you have made
Tracking tools
The tracking measures listed below and used by us are carried out based on Art. 6 para. 1 sentence 1 lit. f GDPR. With the tracking measures used, we want to ensure a needs-based design and the continuous optimisation of our website. On the other hand, we use the tracking measures to statistically record the use of our website and to evaluate it for the purpose of optimising our offer for you. These interests are to be regarded as legitimate within the meaning of the provision. The respective data processing purposes and data categories can be found in the corresponding tracking tools.
a) HubSpot Marketing Automation
We use the inbound marketing tool “HubSpot” on our website, which is provided by HubSpot Inc, 25 First Street, 2nd Floor, Cambridge, MA 02141 United States. HubSpot is a software company from the USA with a branch in Ireland. Contact: HubSpot, 2nd Floor 30 North Wall Quay, Dublin 1, Ireland, Phone: +353 1 5187500 HubSpot is a web-based all-in-one marketing software for the realisation and control of inbound marketing. It helps us to arouse your interest in our products. The central element of HubSpot is the user-related personal profiles. A personal contact is created within HubSpot as soon as a previously anonymous website visitor fills out a HubSpot form. At this moment, a contact is created based on your e-mail address. You will only be contacted if you explicitly confirm that you wish to be contacted. HubSpot uses so-called “web beacons” and cookies, which are stored on the user’s computer.
Which persons’ data is stored?
- Data from interested persons
- Customer data
What personal data is collected?
- Title, name, e-mail address, company, telephone, address
- Browser type/version
- Operating system used
- Referrer URL (the previously visited page)
- Host name of the accessing computer (IP address)
- Time of the server request
- Region
Intended use
- E-mail marketing
- Automated e-mail campaigns
- Tracking of e-mail activities and website
- Internal evaluation system for customer interest (scoring with manual corrections, e.g. customer/partner status)
- Tracking the lead source (e.g. adverts on Google)
- Information (target group-specific) about events, solutions, products, services, etc. from REALTECH by e-mail
This information and the content of our website are stored on the servers of our software partner HubSpot. It can be used by us to contact visitors to our website and to determine which of our company’s services are of interest to them. All information we collect is subject to this privacy policy. We use all information collected exclusively to optimise our marketing measures. In this context, we would like to point out that cookies are used on HubSpot’s websites and therefore personal data is processed by HubSpot, its partners and the service providers used (e.g. Google Analytics). We have no influence on this data collection. HubSpot is certified under the terms of the “EU-U.S. Privacy Shield Framework” and is subject to the TRUSTe’s Privacy Seal and the “U.S.-Swiss Safe Harbor” Framework.
More information about HubSpot’s privacy policy
More information from HubSpot regarding EU data protection regulations
More information on the cookies used by HubSpot can be found here and there.
More information on the ADV agreement: https://legal.hubspot.com/dpa.
More information on GDPR-compliant data erasure: https://knowledge.hubspot.com/privacy-and-consent/how-do-i-perform-a-gdpr-delete-in-hubspot
If you generally do not want HubSpot to collect data, you can prevent the storage of cookies at any time by changing your browser settings accordingly or by using the following opt-out link:
b) etracker
The provider of this website uses the services of etracker GmbH from Hamburg, Germany (www.etracker.com) to analyze usage data.
We do not use cookies for web analysis by default. If we use analysis and optimisation cookies, we will obtain your explicit consent separately in advance. If this is the case and you give your consent, cookies are used to enable a statistical analysis of the reach of this website, a measurement of the success of our online marketing measures and test procedures, e.g. to test and optimise different versions of our online offering or its components. Cookies are small text files that are stored by the Internet browser on the user’s end device. etracker cookies do not contain any information that enables a user to be identified.
The data generated with etracker is processed and stored by etracker on behalf of the provider of this website exclusively in Germany and is therefore subject to the strict German and European data protection laws and standards. etracker has been independently audited and certified in this respect and has been awarded the data protection seal ePrivacyseal EU.
Data processing is carried out based on the legal provisions of Art. 6 para. 1 lit. f (legitimate interest) of the General Data Protection Regulation (GDPR). Our concern within the meaning of the GDPR (legitimate interest) is the optimisation of our online offering and our website. As the privacy of our visitors is important to us, the data that may allow a reference to an individual person, such as the IP address, login or device identifiers, are anonymised or pseudonymised as soon as possible. No other use, merging with other data or disclosure to third parties takes place.
You can object to the data processing described above at any time by clicking on the slider. The objection has no detrimental consequences. If no slider is displayed, data collection has already been prevented by other blocking measures.
Further information on data protection at etracker can be found here.
We use so-called social plug-ins from the social networks Facebook, X (formerly Twitter), Xing, Linkedin and YouTube on our website based on Art. 6 para. 1 sentence 1 lit. f GDPR to publicise our company. The underlying advertising purpose is to be regarded as a legitimate interest within the meaning of the GDPR. Responsibility for data protection-compliant operation must be guaranteed by the respective provider. We integrate these plug-ins using the so-called two-click method to protect visitors to our website in the best possible way.
a) Facebook
Social plug-ins from Facebook are used on our website to personalise its use. We use the Facebook logo for this purpose. This is an offer from Facebook.
When you access a page on our website that contains such a plugin, your browser establishes a direct connection with the Facebook servers. The content of the plugin is transmitted by Facebook directly to your browser, which integrates it into the website. By integrating the plugin, Facebook receives the information that your browser has accessed the corresponding page of our website, even if you do not have a Facebook account or are not currently logged in to Facebook. This information (including your IP address) is transmitted directly from your browser to a Facebook server in the USA and stored there. If you are logged in to Facebook, Facebook can directly associate your visit to our website with your Facebook account. If you interact with the plugins, the corresponding information is also transmitted directly to a Facebook server and stored there. The information is also published on Facebook and displayed to your Facebook friends. Facebook can use this information for the purposes of advertising, market research and customising the Facebook pages. For this purpose, Facebook creates usage, interest and relationship profiles, e.g. to analyse your use of our website about the advertisements displayed to you on Facebook, to inform other Facebook users about your activities on our website and to provide other services associated with the use of Facebook. If you do not want Facebook to assign the data collected via our website to your Facebook account, you must log out of Facebook before visiting our website. The purpose and scope of the data collection and the further processing and use of the data by Facebook as well as your rights in this regard and setting options to protect your privacy can be found in Facebook’s data protection information.
b) X (formerly Twitter)
Plug-ins of the short message network of X Corp. (formerly Twitter Inc.) are integrated on our website. You can recognise these plug-ins by the X logo on our website.
When you access a page on our website that contains such a plug-in, a direct connection is established between your browser and the X server. X thereby receives the information that you have visited our website with your IP address. If you click on the X logo while you are logged into your X account, you can link the content of our pages to your X profile. This allows X to associate your visit to our pages with your user account. We would like to point out that, as the provider of the website, we have no knowledge of the content of the transmitted data or its use by X. If you do not want X to be able to associate your visit to our pages, please log out of your X user account. Further information on this can be found in X’s privacy policy.
c) Xing
Our website also uses social plug-ins from XING, which is operated by XING SE, Dammtorstraße 30, 20354 Hamburg, Germany. These plug-ins can be recognised by the XING logo.
When you access a page on our website that contains such a plug-in, your browser establishes a direct connection to the XING servers. The content of the plug-in is transmitted by XING directly to your browser and integrated into the page. Through this integration, XING receives the information that your browser has accessed the corresponding page of our website, even if you do not have a XING profile or are not currently logged in to XING. This information (including your IP address) is transmitted directly from your browser to a XING server and stored there. If you are logged in to XING, XING can directly associate your visit to our website with your XING account. If you interact with the plug-ins, for example by clicking the “XING” button, this information is also transmitted directly to a XING server and stored there. If you do not want XING to assign the data collected via our website directly to your XING account, you must log out of XING before visiting our website. Further information on this can be found in XING’s privacy policy.
d) LinkedIn
Our website also uses social plug-ins from LinkedIn, which is operated by LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland.
When you access a page on our website that contains such a plug-in, your browser establishes a direct connection to the LinkedIn servers. The content of the plug-in is transmitted by LinkedIn directly to your browser and integrated into the page. Through this integration, LinkedIn receives the information that your browser has accessed the corresponding page of our website, even if you do not have a LinkedIn profile or are not currently logged in to LinkedIn. This information (including your IP address) is transmitted directly from your browser to a LinkedIn server and stored there. If you are logged in to LinkedIn, LinkedIn can directly associate your visit to our website with your LinkedIn account. If you interact with the plugins, for example by clicking the “LinkedIn” button, this information is also transmitted directly to a LinkedIn server in the USA and stored there. If you do not want LinkedIn to assign the data collected via our website directly to your LinkedIn account, you must log out of LinkedIn before visiting our website. Further information on this can be found in LinkedIn’s privacy policy.
e) Youtube
Our website also uses social plug-ins from YouTube, which is operated by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
When you access a page on our website that contains such a plugin, your browser establishes a direct connection to the YouTube servers. The content of the plugin is transmitted by YouTube directly to your browser and integrated into the page. Through this integration, YouTube receives the information that your browser has accessed the corresponding page of our website, even if you do not have a YouTube profile or are not currently logged in to YouTube. This information (including your IP address) is transmitted directly from your browser to a YouTube server and stored there. If you are logged in to YouTube, YouTube can directly associate your visit to our website with your YouTube account. If you interact with the plugins, for example by clicking the “YouTube” button, this information is also transmitted directly to a YouTube server in the USA and stored there. If you do not want YouTube to assign the data collected via our website directly to your YouTube account, you must log out of YouTube before visiting our website. Further information on this can be found in Google’s privacy policy.
You have:
- Right to information
You can request information about your personal data that we process in accordance with Art. 15 GDPR.
- Right to correction
If the information concerning you is not (or no longer) correct, you can request a correction in accordance with Art. 16 GDPR. If your data is incomplete, you can request that it be completed.
- Right to deletion
You may request the deletion of your personal data in accordance with Art. 17 GDPR, unless the processing is necessary for compliance with a legal obligation, for reasons of public interest or for the establishment, exercise or defence of legal claims.
- Right to restriction of processing
In accordance with Art. 18 GDPR, you have the right to request that the processing of your personal data be restricted. - Right to objection of processing
Pursuant to Art. 21 (1) GDPR, you have the right to object, on grounds relating to your situation, at any time to processing of your personal data which is based on point (f) of Article 6 (1) GDPR. The controller will then no longer process the personal data unless the controller demonstrates compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject or for the establishment, exercise or defence of legal claims. The collection of data for the provision of the website and the storage of log files are mandatory for the operation of the website. - Right of complaint
If you believe that the processing of your personal data violates data protection law, you have the right to complain with a data protection supervisory authority of your choice in accordance with Art. 77 (1) GDPR. This also includes the data protection supervisory authority responsible for the controller: The State Commissioner for Data Protection and Freedom of Information Baden-Wuerttemberg (website available in German only). - Right to data portability
If the requirements of Art. 20 GDPR are met, you have the right to have data, that we process automatically based on your consent or in fulfilment of a contract, handed over to yourself or to third parties. - Right to withdraw consent
In accordance with Art. 7 (3) GDPR, you have the right to withdraw your consent to us at any time. The consequence of this is that we may no longer continue the data processing that was based on this consent in the future. If you wish to exercise your right of withdrawing or objection, simply send an e-mail to [email protected].
When you visit our website, we use the widely used SSL (Secure Socket Layer) method in conjunction with the highest level of encryption supported by your browser. As a rule, this is 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead.
You can recognize whether an individual page of our website is transmitted in encrypted form by the closed display of the key or lock symbol in the lower status bar of your browser.
We also use suitable technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.
This privacy policy is currently valid and is dated May 2024. Due to the further development of our website and offers on it or due to changed legal or official requirements, it may become necessary to update this privacy policy from time to time. You can access the current privacy policy at any time on this website (www.realtech.com/privacy).