Data Protection Declaration
Welcome to our website and thank you for your interest in our company. We take the protection of your personal data extremely seriously. We process your data in compliance with the applicable statutory provisions on the protection of personal data, in particular the EU General Data Protection Regulation (GDPR) and the country-specific implementing legislation applicable to us. The purpose of this Data Protection Declaration is to provide you with comprehensive information about the processing of your personal data by ALRE-IT REGELTECHNIK GMBH and your rights in connection with the same.
For these purposes, personal data is any information that enables the identification of an individual. This includes in particular name, date of birth, address, telephone number, email address and your IP address. Data is anonymous when no personal reference to the user whatsoever can be established.
1.Controller and Data Protection Officer
If you have any questions about this Data Protection Declaration, please contact:
ALRE-IT Regeltechnik GmbH
Tel.: +49 (0) 30 399 84-0
2. Your rights as a data subject
Firstly here, we would like to tell you about your rights as a data subject. These rights are set out in Articles 15–22 of the GDPR. They include:
- The right to access (Art. 15 GDPR),
- The right to erasure (Art. 17 GDPR),
- The right to rectification (Art. 16 GDPR),
- The right to data portability (Art. 20 GDPR),
- The right to restriction of processing (Art. 18 GDPR),
- The right to object to the processing of your data (Art. 21 GDPR).
To assert these rights, please contact: firstname.lastname@example.org. The same applies if you have questions about data processing within our company or if you wish to revoke your previously granted consent. You also have the right to lodge a complaint with a data protection supervisory authority.
3. General Information
3.1 Right to object
Please note the following in connection with the right to object:
Where we process your personal data for direct marketing purposes, you are entitled to object to said processing at any time and without giving reasons for your decision. The same also applies to profiling where this is in connection with the direct marketing.
If you object to processing for direct marketing purposes, we will no longer process your personal data for such purposes. The objection is free of charge and can be done in any form, where possible by contacting: email@example.com
Where we process your data to safeguard legitimate interests, you may object to this processing at any time on grounds relating to your particular situation. This also applies to any profiling based on these provisions.
We will then no longer process your personal data unless we are able to demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or where the processing is to establish, exercise or defend legal claims.
3.2 Data processing purpose and legal basis
When processing your personal data, we will comply with the provisions of the GDPR and all other applicable data protection legislation. The legal basis for the data processing arises in particular from Art. 6 GDPR.
We use your data for the initiation of business transactions, to fulfil contractual and legal obligations, to fulfil contractual relationships, to offer products and services, and to strengthen the customer relationship.
Your consent to data processing may also constitute an authorising instruction under data protection law. Before you grant your consent, we will inform you about the purpose of the data processing and about your right to revoke the same.
3.3 Disclosure to third parties
We will only disclose your data to third parties within the limits of the statutory provisions or with your corresponding consent. Otherwise, your data will not be disclosed to third parties except where we are compelled to so on the grounds of mandatory statutory provisions (disclosure to external bodies, e.g. supervisory authorities or law enforcement authorities). During visitor tracking with Matomo for our website, data will be uploaded locally on to alre’s web server. This data will not be transferred to third-party providers, e.g. Google Analytics.
3.4 Data recipients/recipient categories
Within our company, we make sure that your data is only received by the people who need it to fulfil the contractual and legal obligations.
In particular, in certain cases IT service providers support our specialist departments to complete their tasks. The necessary data protection agreement has been concluded with all service providers.
3.5 Transfers to third countries/Intent to transfer to third countries
Data will only be transmitted to third countries (countries outside the European Union and the European Economic Area) where this is necessary for fulfilment of the contractual relationship, where required by law, or where you have granted us your consent to the same.
We do not currently transfer your personal data to any service provider outside the European Economic Area.
3.6 Data storage period
We store your data for as long as necessary to fulfil the respective purpose of the processing. Please note that numerous retention periods require data to continue to be stored beyond that time (mandatory retention). This relates in particular to retention obligations under commercial or tax law (e.g. German Commercial Code, German Tax Code, etc.). In the absence of any further retention obligations, the data will be routinely erased once the purpose has been fulfilled.
In addition, we may also retain your data if you have granted us consent to do so or where legal disputes arise and we are using evidence within the statutory limitation period, which can be up to thirty years. The standard limitation period is three years.
3.7 Secure transfers of your data
To protect the data stored by us against accidental or deliberate manipulation, loss, destruction, or access by unauthorised persons, in the best way possible, we use appropriate technical and organisational security measures. The security levels are continually reviewed in collaboration with security experts and are adapted to the latest security standards.
Data exchanges from and to our website are always encrypted. We use HTTPS as the transfer protocol for our website, using the latest encryption protocols in each instance.
3.8 Obligation to provide data
Various personal data is necessary for the establishment, implementation and termination of the contractual relationship and to fulfil the contractual and statutory obligations associated with the same. The same applies to the use of our website and the various features it provides.
We have summarised the details of this for you in the paragraph above. In certain cases, data also needs to be collected or provided on the basis of statutory provisions. Please note that if you do not provide this data, it will not be possible to process your request or fulfil the underlying contractual relationship.
3.9 Data categories, sources and origin
The data we process is determined by the context in each instance: This depends on whether you, for example, place an order online or submit a request via our contact form, whether your send us a job application or file a complaint.
Please note that we also provide information for special processing situations separately, in a suitable location, e.g. when uploading application documents or making a contact request.
3.10 Automated individual decisions
We do not use any purely automated processing processes to make decisions.
4. Data Collection and use
4.2 Google Maps
We use Google Maps (API) from Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”) on our website. To ensure data protection, Google Maps is deactivated when you enter this website for the first time. A direct connection to the Google servers is only established if you have given your consent to Google Maps using our cookie banner (consent according to Art. 6 Para. 1 lit. a) EU GDPR). You can revoke your consent here at any time. This prevents your data from being transferred to Google the first time you enter the site.
After activation, Google Maps will save your IP address. This is then usually transferred to a Google server in the USA and stored there.
You can find additional information on handling user data in Google’s data protection declaration.
4.3 You Tube
We integrate the videos from the platform “YouTube” from the provider Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, into our online offering.
The videos were embedded in the extended data protection mode. According to the information provided by the YouTube platform, the cookie activity and the resulting data collection are only linked to the use of the playback function of the video itself.
By embedding the videos, data is always transferred to the server of the corresponding platform. These processing operations are based on your consent (Art. 6 Para. 1 lit. a) EU-DS-GVO), which you can revoke here at any time.
4.4 Google Marketing Platform (before: Double Click)
Double Click (now: Google Marketing Platform) is Google’s advertising network. It is mainly
used to implement advertising with Google Ads but it is also used for other services such as YT and Google Maps.
The Alre homepage uses YouTube videos in the enhanced data protection mode to keep personal data
to a minimum. YouTube videos are also embedded on the b@home landing page.
4.5 Matomo analysis
This website uses Matomo, open-source software for the statistical analysis of visitor traffic. Matomo uses so-called “cookies”, text files stored on your computer which enable analysis of your use of the website. Information generated by the cookie relating to your use of this website is stored on the server of the provider, Alre-IT Regeltechnik GmbH. The IP address is anonymised after processing and before it is stored.
During visitor tracking with Matomo for the Alre homepage and the b@home landing page, the following data will be collected locally on alre’s web server:
- Anonymised IP addresses with the last 2 bytes removed (so, for example, 184.108.40.206 instead of 198.51.100.54)
- Pseudo-anonymised location (based on the anonymised IP address)
- Date and time
- Title of the page accessed
- URL of the page accessed
- URL of the previous page (if the page permits)
- Screen resolution
- Local time
- Files clicked and downloaded
- External links
- Page load time
- Country, region, town/city (low accuracy due to IP address)
- Main browser language
- Browser’s user agent
- Interaction with forms (but not their content)
You can prevent cookies from being installed with an appropriate setting in your browser software. Please note however that doing so may make you unable to use all functions of this website to their full extent.
4.6 Contact form/making contact by email (Art. 6(1)(a, b) GDPR)
Our b@home website contains a contact form which can be used to contact us electronically. When you write to us using the contact form, we process the data provided by you in the contact form to make contact with you and answer your questions and requests.
During the course of a contact request, we collect and process the following data:
- Name (first name/last name)
- Contact details (email)
- Content of the request (optional)
The principle of data minimisation and data avoidance is complied with here, meaning that you only need to enter the data we need in order to contact you. This is your email address and the message field itself. Your IP address is also processed for technical reasons and for legal security. All other data fields are optional and can be specified (e.g. for a more relevant response to your enquiry) if desired.
We use appropriate security measures to protect the security and confidentiality of your data in the best possible way. Your request is submitted to us in encrypted form.
If you contact us by email, we will process the personal data provided in the email for the sole purpose of dealing with your enquiry
5. Disclaimer – Links to other providers
Our website also contains links to the websites of other companies. Where links are provided to the websites of other providers, we have no influence over the content thereof. Therefore, we cannot accept any responsibility for, or offer any guarantee as to, their content. The provider or operator of such sites will always be responsible for the content of linked pages.
At the time of linking, the linked pages were checked for any possible legal violations and identifiable rights infringements. There was no evidence of illegal content at that time. Continual monitoring of the content of such linked sites is not reasonable without concrete evidence of a legal violation however. Should any legal violation come to our attention, the links in question will be removed immediately.