Data protection

Data protection declaration

1. Scope and subject-matter of the data protection declaration

The subject-matter of this data protection declaration is personal data that are collected over our website which is available at laserline.de, and the purposes for which they are processed. We do not have influence or control over linked contents and the data protection declarations of other pages regarding links from ours to their pages. We encourage you to check the data protection declarations on those other websites to be able to determine if and to what extent personal data are collected, processed, used or made available to third parties. 

2. Definitions and determination of terms

Personal Data:
All information that are related to an identified or identifiable individual person (hereinafter referred to as "affected person”); an individual person is considered identifiable when s/he can be identified directly or indirectly especially by means of the assignment of identification tags such as a name, an identification number, location data, online identifier or by one or more special features specific to the physical, physiological, genetic, mental, economic, cultural or social identity of this natural person.

Processing: 
Any operation or set of operations, by automatic means or not, which is performed upon the personal data, such as collection, recording, organization, arranging, storage, adaptation or alteration, reading out, retrieval, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, blocking, erasure or destruction.

Person responsible:
Means the natural or legal person, public authority, agency or any other body, who alone or jointly with others determines the purposes and means of the processing of personal data; when the purposes and means of such processing are determined by national or European laws or regulations, the responsible person or the specific criteria for its nomination may be designated by the law(s) of the European Union or the Member State(s).

Recipient:
Means any natural or legal person, public authority, agency or any other body, third part or not, to whom the personal data might be disclosed. However, public authorities that may receive data as part of a certain inquiry according to European Union law or that of the Member States shall not be considered recipients; the processing of such data by the mentioned public authorities shall take place in full compliance with data protection provisions in force within the scope of the purposes of processing.

The complete text of the General Data Protection Regulation (GDPR), including the additional definitions and determination of terms, is available on the internet at Link.

3. Name and contact details of the person responsible

Laserline GmbH, a company with limited liability that develops and distributes diode lasers, Fraunhofer Straße, 56218 Mülheim-Kärlich, Germany, represented by its managing directors Volker Krause and Dr. Christoph Ullmann, Telephone: + 49 2630 964 4000, E-Mail: info@laserline.com

4. Name and contact details of the data protection officer

Marcel Erntges, Telephone: +49 89 210977-40, E-Mail: marcel.erntges@prw-consulting.de

5. Categories of personal data

5.1 Using the website via access

Personal data:
IP address, Cookie identifier

Description:
When our website is accessed, the so-called access data is collected and stored in a protocol file (the so-called log-file). These access data also include the IP address. Furthermore, the name of the visited website, the accessed file, date and time of access, data volume transferred and protocol on successfully processed request, type of browser and operating system used, the so-called referrer URL (previously visited page), and the requesting provider are all stored in the log-file.

In addition, the so-called Cookies are placed on your terminal device (laptop, smartphone or PC).  Details about the used Cookies on the website, the specific purpose of each Cookie and a description of how to delete these Cookies can be found in the document Cookie and Opt Out information.

Purpose of data processing:
We collect the log-files including the IP address to guarantee a smooth connection setup of the website and to ensure a comfortable visit to our website for the user. Additionally, the log-file supports the analysis of the system security and stability, and helps with the administration.

Employing cookies helps make the use of our service and website more pleasant for the user, because with the help of Cookies, it can be determined whether the user has already visited a certain page of our website. With the help of the Cookie identifier, we furthermore get information about the user’s behavior or search queries and are thus able to adjust the offer to the interests of the user in the next visit. 

Interest in the data processing: 
The log-file data, including the IP address, are exclusively used for the technical and creative optimization of the website and the security of our systems (e.g. in the course of an attack on our IT or a security incident). When visiting our website, from the log-file data including the IP address, it is not possible for us to obtain any reference(s) to persons. This can only be the case if you register in our customer portal at the same time. In this case, we can assign the IP address to you. With the help of the Cookie identifier, we will obtain the information if and to the extent that you have already visited our website and/or when you revisit. Please find the details and information on how to delete Cookies in the file Cookie and Opt Out information. 

Duration of data storage: 
The IP address will be deleted 7 days after it is collected; further details about the Cookies, their storage duration and how you can delete them can be found in the file Cookie and Opt Out information.

Legal Basis:
Article 6 section 1 f) DS-GVO (data protection basic regulation)

Provision necessary or provided: 
The provision of the abovementioned personal data is neither legally nor contractually mandatory. However, without the IP address and Cookie identifier, the service and functionality of the website cannot be assured or might well be limited.

5.2 Using of Tracking Tools by access and during session (Analytics)

Personal data:
IP address, Cookie identifier

Description: 
On the website, the so-called tracking tools are used, which inter alia refer to Cookies and which process the IP address. Tracking tools typically examine where the visitors come from, which pages of a website are visited, and how often and how long subpages and categories are viewed. By this it can, for example, be determined which search keywords and websites the user has entered to assure a needs-based design and the ongoing optimization of our website. Details about the used Cookies on the website, the specific purpose of each Cookie, and a description of how to delete these Cookies can be found in the document Cookie and Opt Out information.

Purpose of data processing: 
Using the tracking tools also serves to evaluate user behavior so as to be able to adjust the online offer to the interests of the visitor and to get to know which services are used. On the other hand, we use tracking measures to collect statistical data about the usage of our website and to evaluate it for the optimization of our offer.

Interest in data processing: 
With the help of tracking tools, we can align our offer to the interests of the customers, visitors and interested persons. Details about the providers, the manner of operation, information on how to delete Cookies being used (or plug-ins), and how to avoid tracking can be found at Cookie and Opt Out information.

Recipient of the abovementioned data: 
Further details about the recipients of data, how to operate the tools and information, and how to avoid data transfer (tracking) can be found at Cookie and Opt Out information.

Company: Google Inc.
Tool/usage/application: Google Analytics
Third country transfer: yes

Details/information about data protection/privacy shield:

http://www.google.com/policies/
https://support.google.com/analytics/answer/6004245?hl=de
Privacy Shield Zertifizierung

Duration of data storage: 
Details about Cookies that are used within these tracking tools and their storage duration, and information on how to delete these Cookies can be found at Cookie and Opt Out information.

Provision necessary or provided:
The provision of the abovementioned personal data is neither legally nor contractually mandatory.

Profiling: 
With the help of tracking tools, the behavior of website users can be evaluated and their interests analyzed. Further details about the providers can be found at Cookie and Opt Out information.

5.3 Using contact form

Personal data: 
E-Mail address, name and surname, comment

Purpose of data processing: 
We use your contact form data including the inquiry itself exclusively to reply to your inquiries, therefore to communicate with you and to prepare our offers.

Duration of data storage: 
From the processing and execution of your inquiry until we are asked to delete them. You can withdraw your authorization for data processing at any time without undermining the legality of the processing already done from the time of agreement until withdrawal.

Legal basis:
Article 6 section 1 a, b) DS-GVO (data protection basic regulation)

Provision necessary or provided:
The provision of personal data is neither legally nor contractually mandatory. However, without these data the inquiry cannot unfortunately be dealt with. 

5.4 Using application form:

Personal data: 
Name and surname, e-mail address, telephone number, address, application documents

Purpose of data processing: 
All data that you provide us through the application tool are exclusively processed for the purpose of implementing the application and selection process and are solely used for the evaluation of professional competence and contacting you.

Duration of data storage: 
In case of rejection of candidature, the deletion of the data submitted by you is done no later than six (6) months after notification about the decision, unless you have given us your express consent to store the application documents for a longer duration. 

Legal basis:
§ 26 BDSG (German Federal Data Protection Act); Art. 6 Abs. 1 b) DS-GVO (data protection basic regulation)    

Provision necessary or provided:
The provision of personal data is neither legally nor contractually mandatory. However, without these data the application cannot unfortunately be dealt with.  

6. Your rights

You have the right to obtain a confirmation if we process your personal data, as well as the right to obtain information about these personal data. Furthermore, you have the right to correct, delete and limit the data processing, as well as the right to appeal the processing of personal data at any time or withdraw the agreement for data processing at any time, even to claim data transmission. Additionally, you have the right to complain in case of data protection violations at a regulatory authority.

You can assert all your rights to us via e-mail (datenschutz@laserline.com) or via the contact data shown under the topic “Person responsible”.

Data protection notice concerning our website

The following indications are supposed to provide a quick-and-easy overview about which data we process and collect from you when browsing our website. You will find a detailed description in our Data protection declaration and in the document about additional possibilities for you to appeal (Cookie and Opt Out information).

1. Who is responsible for the data protection?

Laserline GmbH, a limited liability company that develops and distributes diode lasers, Fraunhofer Straße, 56218 Mülheim-Kärlich, Germany, represented by its managing directors Volker Krause and Dr. Christoph Ullmann, Telephone: +49 2630 964 4000, E-Mail: info@laserline.com

2. How to reach our data protection officer

You can reach our data protection officer, Herrn Marcel Erntges, via e-mail: marcel.erntges@prw-consulting.de

3. What data do we process via our website and for what purpose?

When calling up the website we process IP address and Cookie identifier (Cookies) for connection warranty with our website and a comfortable usage of our website by its users; evaluation of the system security and stability and for administrative reasons. Details about the used Cookies on the website, the specific purpose of each Cookie and a description of how to delete these Cookies can all be found at Cookie and Opt Out information. (Legal basis: Article 6 section 1 f) DS-GVO, data protection basic regulation)

When calling up the website we process IP address and Cookie identifier (Cookies) for evaluation of user behavior with the help of tracking tools so as to be able to adjust the online offer(s) to the interests of the visitors. Details about the Cookies here used (and plug-ins), the specific purpose of processing, and a description of how to delete these Cookies and plug-ins can all be found at Cookie and Opt Out information. (Legal basis: Article 6 section 1 f) DS-GVO, data protection basic regulation)

When calling up the website we process IP address and Cookie identifier (Cookies) for placing advertisement(s) with the help of so-called advertising tracking tools on our website that are adjusted to the preferences of our visitors. Details about the Cookies here used (and plug-ins), the specific purpose of processing, and a description of how to avoid these Cookies, plug-ins, and advertisement tracking can all be found at Cookie and Opt Out information. (Legal basis: Article 6 section 1 f) DS-GVO, data protection basic regulation)

When using the contact form we process name and surname, e-mail, message for provision of a contact form as well as making it possible for interested persons to get in touch; communicating with them and processing their request. A further processing does not take place. (Legal basis: Article 6 section 1 f) DS-GVO, data protection basic regulation)

When using the application form we process title, name and surname, e-mail, and application documents for provision of an online application; evaluation of their professional competence and contacting the applicants; in case the applicant is hired, the data will be stored in the personnel file. (Legal basis: § 26 BDSG, Federal Data Protection Act)

4. Do we forward data, and if yes to whom?

When calling up the website we provide date of IP address and Cookie identifier to the provider of the tracking tools for the purpose of user analysis and preparation of data for our use. Provider’s details and information on how to avoid the analysis and evaluation can all be found at the Data protection declaration and Cookie and Opt Out information.

When calling up the website we provide date of IP address and Cookie identifier to the provider of advertising tracking tools: Providers of the advertising tool for the purpose of user analysis and advertisement. Provider’s details and the possibilities for appeal can be found in the Data protection declaration and Cookie and Opt Out information.

5. Do we transfer data to so-called third countries?

Yes, when calling up the website we provide date of IP address and Cookie identifier to the provider of tracking tools and advertising tracking tools located in so-called third countries. Details and information about which countries data is transferred to can be found at the Data protection declaration and Cookie and Opt Out information. 

6. For how long is such data stored and when will it be deleted?

6.1 Calling up the website:

Details about the storage duration of Cookies in connection with the creation of log-files, the use of our tracking tools, as well as a description of how you can delete these Cookies in advance can all be found in the Cookie and Opt Out information.

6.2 Using the contact form:

For the duration of our communication with you or until we are requested by you to delete them. Mandatory statutory regulations – especially retention periods – remain unaffected.

6.3 Using the application form: 

For the duration of the application process or employment in our company; however, in the case of a rejection, no longer than six (6) months after notification of a negative decision. In the case of being hired, your data are processed and stored as employee data.

7. Is there an obligation to provide your personal data?

The provision of personal data is neither legally nor contractually mandatory. However, some areas of the website are not usable or only partially so without the processing of such data. Furthermore, communication with you or evaluation of the application documents will not be possible without the processing of the aforementioned data. You can find further details on this at our Data protection declaration.

8. Does the so-called profiling take place on our website?

Yes. For the purpose of user behavior analysis or search queries, the tracking tools that were implemented by us create a pseudonymous user profile. Further details on the operating principle behind these tracking tools and information on how you can delete the associated Cookies (and/or plug-ins) or avoid tracking (profiling) can be found in the Cookie and Opt Out information and in our Data protection declaration.

9. What rights do you have in relation to the processing of your data?

You have the right to obtain a confirmation if and when we process your personal data, as well as the right to obtain information about these personal data. Furthermore, you have the right to correct, delete, and limit the data processing, as well as the right to appeal against the processing of personal data at any time or withdraw your agreement to data processing at any time or to claim for data transmission. Additionally, you have the right to complain in case of data protection violations at a regulatory authority.

Data protection notice for our customers

In this data protection notice, we wish to inform you about the processing of your personal data by us and about your legal rights.

1. Who is responsible for the data protection?

Laserline GmbH, Fraunhofer Straße, 56218 Mülheim-Kärlich, represented by its managing directors Volker Krause and Dr. Christoph Ullmann, Telephone: +49 2630 964-4000, E-Mail: info@laserline.com

2. How to reach our data protection officer?

You can reach our data protection officer, Herrn Marcel Erntges, via e-mail: marcel.erntges@prw-consulting.de

3. What data do we process and where do they come from?

We process personal data we collect from initiating a business transaction with you (e.g. request, first consultation, telephone or E-Mail contact, offer preparation) or from starting a business relation with you. In this, the following data in particular are processed: master data (e.g. name, address and contact data, bank details (tax number) or correspondence data (e.g. correspondence with you, consultation protocol, issues from running projects or requests).

4. For what purpose do we process your data and on what legal basis?

  • a) Based on your agreement with the data processing (Art. 6 section 1 letter a DS-GVO, data protection basic regulation): 
    If, and as far as, you have given the approval for the processing of your personal data, the respective approval will be the legal basis for the processing, as specified in the approval. This affects, for example, the receipt of electronic customer information. At any time, you can revoke any approval or consent with respect to the future. This also applies to declarations of consent that you have given us before the implementation of the DS-GVO (data protection basic regulation), i.e. before May 25, 2018.
  • b) For the fulfillment of contractual obligations (Art. 6 section 1 letter b DS-GVO, data protection basic regulation): 
    Your data are processed for the initiation or execution of our contracts with you, such as the provision of our services (e.g. maintenance and support, sales of products via the shop, etc.). The specific purposes of the data processing varies from case to case regarding the respective service and product descriptions as well as the relevant contract documents.
  • c) Within the balancing of interests (Art. 6 section 1 letter f DS-GVO, data protection basic regulation):
    Your data can additionally be used by us or third parties on the basis of balancing of interests in order to safeguard legitimate interests. For example, it can be used for the purpose of further development of our services or systems and products, the warranty of IT security and operation, advertisement, market and opinion research, the assertion of legal claims and defense in case of legal disputes, the prevention and clarification of crimes, risk management, and fraud prevention.
  • d) Based on legal requirements (Art. 6 section 1 letter c DS-GVO, data protection basic regulation): 
    We have various statutory obligations that require data processing. This includes, for example, tax regulations as well as statutory accounting, the fulfilling of requests and requirements by national, foreign, supervisory or prosecuting authorities, as well as the fulfillment of fiscal monitoring and reporting of obligations.

5. To whom do we forward the data?

Within our company, we only forward your data to departments that need them for the fulfillment of contractual obligations or their respective tasks (e.g. customer service, IT, sales and marketing). Furthermore, external parties only receive your data if they were bound by contract to their duties as processor (Art. 28 DS-GVO, data protection basic regulation) and if they can guarantee that they process your data in accordance with our instructions. This includes, for example, service provider in the fields, customer service, accounting, IT and logistics. Additionally, we only forward your data to persons or parties for which you have explicitly given your permission for us to do so.

6. Do we transfer data to third countries?

Your data are only processed within the European Union and states within the European Economic Area. Otherwise, you will be informed separately beforehand by us, including the right to appeal against such data transfer at any time.

7. How long do we forward the data?

We store your personal data only for as long as it is necessary to carry out the related contractual performances. Besides the duration of the actual business relationship, also included is data processing within the initiation and execution of contracts. Furthermore, we have diverse safekeeping and documentation obligations that arise inter alia from the commercial code and tax-law provisions (Abgabenordnung = Regulation of Taxation). The given deadlines for storage or documentation are five to ten years. Finally, the storage duration is also gauged following the legal periods of limitation, which are for example according to §§ 195 et seq. of the German Civil Code usually three years, but in certain cases even up to 30 years.

8. Is there an obligation to provide your personal data?

Within our business relationship you only need to provide those personal data that are necessary for initiating, conducting and termination of a business relationship. Otherwise, the conclusion of a contract or the execution of it will not be possible.

9. To what extent is an automated decision making carried out on a case-by-case basis?

For the establishment and implementation of a business relationship, we principally do not use an automated decision making following Art. 22 DS-GVO, data protection basic regulation. Should we use these methods in particular cases, we will inform you about it.

10. To what extent do we use your data for profiling?

We process your data not automatically, but only with the goal of evaluating certain personal aspects (the so-called “profiling” following Art. 4 No. 4 DS-GVO, data protection basic regulation).

11. What data protection rights do you have?

Under the respective legal conditions, you have the right to obtain a confirmation if we process your personal data, as well as the right (article 15 DS-GVO, data protection basic regulation, § 34 BDSG, Federal Data Protection Act) to obtain information about these personal data. Furthermore, you have the right to correct (Art. 16 DS-GVO, data protection basic regulation), delete (Art. 17 DS-GVO, data protection basic regulation, § 35 BDSG, Federal Data Protection Act) or limit the data processing (Art. 18 DS-GVO, data protection basic regulation), as well as the right to appeal the processing of personal data at any time (Art. 21 DS-GVO, data protection basic regulation), even to withdraw your agreement for data processing at any time or to lay a claim against data transmission (Art. 20 DS-GVO, data protection basic regulation). Additionally, you have the right to complain in case of data protection violations at a regulatory authority (Art. 77 DS-GVO, data protection basic regulation, § 19 BDSG, Federal Data Protection Act).

12. Separate notice about your right to object

  • 1. Case-related right to object
    For legitimate reasons relating to your particular situation, you have at any time the right to file an objection against the processing of personal data related to you on the basis of Art. 6 section 1 letter f DS-GVO, data protection basic regulation (data processing on the basis of balancing of interests). This also applies to profiling that is based on this regulation according to Art. 4 No. 4 DS-GVO, data protection basic regulation, which, for example, can be made for customer service and support and for sales reasons. If you appeal, your personal data will not be processed any longer unless Laserline can provide compelling and legitimate reasons for processing that outweigh your interests, rights or freedom, or the processing serves the purpose of assertion, execution or defense of legal claims.
  • 2. Right of appeal against the processing of data for the purpose of direct advertising:
    Laserline can also process your data within the legal provisions for direct advertising. You have the right to object at any time to the processing of personal data that are related to you for the purpose of such advertisement without incurring any costs other than the transmission costs according to the basic rates. This also applies to profiling in as far as it is related to such direct advertising. If you object to processing for the purpose of direct advertising, your personal data are no longer processed for those purposes. The appeal is not subject to any condition or form. You will find the relevant contact details in paragraph 1.

 

Data protection notice for our applicants

In this data protection notice, we wish to inform you about the processing of your personal data by us and about your legal rights.

1. Who is responsible for the data protection?

Laserline GmbH, Fraunhofer Straße, 56218 Mülheim-Kärlich, represented by its managing directors Volker Krause and Dr. Christoph Ullmann, Telephone: +49 2630 964-4000, E-Mail: info@laserline.com 

2. How to reach our data protection officer?

You can reach our data protection officer, Herrn Marcel Erntges, via e-mail: marcel.erntges@prw-consulting.de

3. What data do we process and where do they com from?

We process personal data we collect from your application. In this, the following data in particular are processed: master data (e.g. name, address and contact data, curriculum vitae) or correspondence data (e.g. correspondence with you).

4. For what purpose do we process your data and on what legal basis?

For purposes of an employment relationship (legal Basis: § 26 BDSG (new), Federal Data Protection Act):

It is allowed to process the personal data of employees for the purpose of employment when this is necessary for decision making regarding setting up of employment or after the setup of employment for accomplishing its objective or the exercise or fulfillment of rights and duties that result from a law or collective agreement, works or service agreement (collective bargaining agreement) with the representation of employees' interests. For the detection of crimes, it is only allowed to process the personal data of employees if there is actual evidence, which has to be documented, that the employee(s) concerned actually committed a crime, that the processing and detection are necessary, and that the legitimate interest of the employee does not exclude the processing of her or his personal data, especially when the type and extent with regard to the reason are disproportional.

5. To whom do we forward the data?

Within our company, we only forward your data to departments that need them for the fulfillment of contractual and legal obligations or their respective tasks (e.g. human ressources, IT, sales and marketing). 

6. Do we transfer data to third countries?

Your data are only processed within the European Union and states within the European Economic Area. Otherwise, you will be informed separately beforehand by us, including the right to appeal against such data transfer at any time.

7. How long do we store your data?

We store your personal data only for as long as it is necessary to carry out the related contractual performances. Besides the duration of the actual application process, also included is data processing within the initiation and execution of contracts. Furthermore, we have diverse safekeeping and documentation obligations that arise inter alia from the commercial code and tax-law provisions (Abgabenordnung = Regulation of Taxation). 

8. Is there an obligation to provide your personal data?

Within our business relationship you only need to provide those personal data that are necessary for initiating, conducting and termination of a business relationship. Otherwise, the conclusion of a contract or the execution of it will not be possible.

9. To what extent is an automated decision making carried out on a case-by-case basis?

For the establishment and implementation of a business relationship, we principally do not use an automated decision making following Art. 22 DS-GVO,data protection basic regulation. Should we use these methods in particular cases, we will inform you about it.

10. To what extend do we use your data for profiling?

We process your data not automatically, but only with the goal of evaluating certain personal aspects (the so-called “profiling” following Art. 4 No. 4 DS-GVO = data protection basic regulation).

11. What data protection rights do you have?

Under the respective legal conditions, you have the right to obtain a confirmation if we process your personal data, as well as the right (article 15 DS-GVO, data protection basic regulation, § 34 BDSG, Federal Data Protection Act) to obtain information about these personal data. Furthermore, you have the right to correct (Art. 16 DS-GVO, data protection basic regulation), delete (Art. 17 DS-GVO, data protection basic regulation, § 35 BDSG, Federal Data Protection Act) or limit the data processing (Art. 18 DS-GVO, data protection basic regulation), as well as the right to appeal the processing of personal data at any time (Art. 21 DS-GVO, data protection basic regulation), even to withdraw your agreement for data processing at any time or to lay a claim against data transmission (Art. 20 DS-GVO, data protection basic regulation). Additionally, you have the right to complain in case of data protection violations at a regulatory authority (Art. 77 DS-GVO, data protection basic regulation, § 19 BDSG, Federal Data Protection Act).