Privacy Policy

DATA PROTECTION

Thank you for visiting our website. The protection of your privacy is of the utmost importance to us, which is why we collect, process and use your personal data that is collected when you visit our website only if you have consented to the processing or if there is a corresponding legal basis. Your data will neither be published by us nor unlawfully passed on to third parties. This data protection declaration applies to all data collections and other data processing by MEKRA Lang GmbH & Co. KG in connection with the operation of the company website.

We reserve the right to change the privacy policy at any time with effect for the future. The current version of the data protection declaration can be accessed, saved and printed out at any time on our website. In the following, we will inform you in detail about what data is collected during your visit to our website and to what extent and for what purposes it is used and inform you about your rights as a data subject.

Contact details of the controller

Person responsible is:

MEKRA Lang GmbH & Co KG
Buchheimer Str. 4
91465 Ergersheim
Management: Susanne Lang, Dr. Werner Lang

Contact:

Phone: +49 9847 989-0
Fax: +49 9847 989 8160
E-mail: info@mekra.de

Contact Privacy:

E-mail: datenschutz@mekra.de

 

Purposes and legal bases of data processing

When processing your personal data, the provisions of the EU-DS-GVO and all other applicable data protection regulations are complied with. Legal bases for the data processing result in particular from Art. 6 EU-DS-GVO.

We use your data to initiate business, to fulfill contractual and legal obligations, to carry out the contractual relationship, to offer products and services and to strengthen the customer relationship, which may also include analyses for marketing purposes and direct advertising.

Your consent to data processing may also constitute a permission requirement under data protection law. Before granting consent, we will inform you about the purpose of the data processing and about your right of revocation.

If the consent also refers to the processing of special categories of personal data, we will expressly point this out to you in the consent. Processing of special categories of personal data pursuant to Art. 9 EU-DS-GVO will only be carried out if this is required by legal provisions and there is no reason to assume that your legitimate interest in the exclusion of the processing outweighs this.

Disclosure to third parties

We will only pass on your data to third parties within the scope of the statutory provisions or with corresponding consent. Otherwise, we will not disclose your data to third parties unless we are required to do so by mandatory legal provisions (disclosure to external bodies such as supervisory authorities or law enforcement agencies).

Recipients of the data / categories of recipients

Within our company, we ensure that only those persons receive your data who need them to fulfill contractual and legal obligations.

In certain cases, service providers support our specialist departments in performing their tasks. The necessary data protection contracts have been concluded with all service providers.

Third country transfer / intention to transfer to third country

Data will only be transferred to third countries (outside the European Union or the European Economic Area) if this is necessary for the performance of the contractual relationship, is required by law or you have given us your consent.

Data storage period

We store your data as long as they are needed for the respective processing purpose. Please note that numerous retention periods require that data continues to be stored. This applies in particular to retention obligations under commercial or tax law (e.g. Commercial Code, Fiscal Code, etc.). If there are no further storage obligations, the data will be routinely deleted after the purpose has been achieved.

In addition, we may retain data if you have given us permission to do so or if legal disputes arise and we use evidence under legal statutes of limitations, which can be up to thirty years; the regular statute of limitations is three years.

Obligation to provide the data

Various personal data are necessary for the establishment, implementation and termination of the debt relationship and the fulfillment of the associated contractual and legal obligations. The same applies to the use of our website and the various functions it provides.

We have summarized the details for you in the above point. In certain cases, data must also be collected or made available due to legal requirements. Please note that it is not possible to process your request or to carry out the underlying contractual relationship without providing this data.

Categories, sources and origin of data

Which data we process is determined by the respective context: This depends on whether, for example, you place an order online or enter an inquiry in our contact form, whether you send us an application or submit a complaint.

Please note that we may also provide information for special processing situations separately in a suitable place, e.g. when uploading application documents or when a contact request is made.

 

STORAGE OF ACCESS DATA

You can visit our website without providing any personal information. We only automatically store access data in so-called server log files each time you access our website. The following data is collected and stored at the time of access:

  • IP address
  • Browser type and version
  • Date and time of the request
  • Name of the requested file
  • File name from which the file was requested
  • amount of data transferred and access status
  • a description of the web browser and operating system used
  • and the name of your Internet service provider.

This data is collected exclusively to ensure trouble-free operation of the site and to improve our offer. An evaluation takes place exclusively for statistical purposes and does not allow us to draw any conclusions about your person. The temporary storage of the IP address is necessary to enable delivery of the website to your end device.

The legal basis for the temporary storage of access data is Art. 6 para. 1 lit. f DSGVO. This data is evaluated exclusively to ensure the permanent and trouble-free operation of the website and to improve the content of our website as well as for transmission to law enforcement authorities in the event of a cyber attack and does not allow us to draw any conclusions about your person. The anonymous data of the server log files are stored separately from all other personal data provided by you. These purposes are also our legitimate interest in data processing according to Art. 6 para. 1 lit. f DSGVO.We evaluate this anonymously collected data and information statistically with the aim of increasing our data protection and data security.

 

COOKIES

Our website uses so-called cookies. They serve to make our offer more user-friendly, effective and secure. Cookies are small text files that are stored on your terminal device and that your browser stores (locally). Cookies only contain pseudonymous data. Some cookies remain for the duration of a browser session (so-called session cookies), others are stored for longer periods (so-called persistent cookies, e.g. Consent settings). The latter are automatically deleted after the respective specified time (usually 6 months). In addition to our own cookies, we also use cookies that are controlled by third-party providers. These use the information contained in the cookies, for example, to display content to you or to record the pages you visit.

Based on our legitimate interest (Art. 6 para. 1 p. 1 lit. f EU-DS-GVO), we use technically necessary cookies that are absolutely necessary for the operation of the website and to ensure its functionality. Furthermore, we use cookies without your consent, insofar as their sole purpose is the storage of or access to information stored in the terminal device for the transmission of messages or these are absolutely necessary in order to be able to provide the service expressly requested by you, § 25 para. 2 TTDSG.

Assuming your consent, further cookies are used, by means of which we or third parties can, for example, evaluate how our services are used. This allows us to design the content according to user needs. In addition, the cookies enable us to measure the effectiveness of a particular advertisement and to have it placed, for example, depending on the thematic user interests. The legal basis for this is your express consent (Art. 6 para. 1 p. 1 lit. a EU-DS-GVO, § 25 para. 1 TTDSG).

You can revoke your consent via our Consent banner at any time with effect for the future and change the cookie settings. Please note that changes must be made separately for each end device.

If you maintain accounts with the third-party providers we use and are logged in there, your data may be linked to the respective account. You can avoid such a combination by not granting or revoking your consent to the cookies in question or by logging out of the respective third-party providers in advance.

Most browsers accept cookies automatically. You can also manually deactivate, restrict or delete cookies on your end device via the settings of your browser or software-supported. If you deactivate the setting of cookies, the full use of our website is not possible or only possible to a limited extent.

 

MATOMO

To analyze our website, we use - with your consent - the open source web analytics service Matomo (formerly PIWIK). The legal basis for the processing of personal data is Art. 6 para. 1 lit. a DSGVO.

Matomo uses methods that enable an analysis of the use of our website by you, in particular from which internet page you came to our website (so-called referrer), which sub-page you access or how often and for how long you view a sub-page. Matomo uses cookies for this purpose (for cookies, see already above). The information generated by the cookie about the use of this website is stored on our server. The IP address is anonymized before storage.

Processing of personal data enables us to analyze the surfing behavior of our users. By evaluating the data, we are able to continuously improve our website and its user-friendliness. By anonymizing the IP address, the interest of users in their personal data protection is sufficiently taken into account.

If individual pages of our website are called up, the following data is stored:

  1. Two bytes of the IP address of the user's calling system.
  2. The accessed web page
  3. The website from which the user has reached the accessed website (referrer)
  4. The subpages that are called from the called web page
  5. The time spent on the website
  6. The frequency of access to the website

The software runs exclusively on the servers of our website. A storage of the personal data of the users takes place only there. The data is not passed on to third parties.

You can revoke your consent to data collection by Matomo once you have given it at the end of this privacy policy.

 

GOOGLE MAPS

On our website, we use Google Maps (API) from Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google"). To ensure data protection, Google Maps is deactivated when you first enter this website. A direct connection to Google's servers is only established when you independently activate Google Maps (consent according to Art. 6 para. 1 lit. a) DSGVO). You can revoke your consent at any time at the end of this privacy policy. This prevents your data from being transferred to Google when you first enter the page. After activation, Google Maps will store your IP address. This is then usually transferred to a Google server in the USA and stored there.

A third country transfer takes place, so that in this case there is a risk that your data may be processed by U.S. authorities for control and monitoring purposes, without you possibly having any legal remedies. However, we take the possible measures necessary under data protection law in accordance with Art. 44 et seq. EU-DS-GVO to establish the level of data protection in the third country.

You can find more information on the handling of user data in Google's privacy policy:

https://www.google.de/intl/de/policies/privacy/.

 

YOUTUBE PLATFORM (EMBEDS)

On our website we use so-called embeddings or embeds of content. These embeds can be made, for example, from the Youtube platform. A classic embed is, for example, a video on the Youtube platform. This always involves a data transmission to the server of the corresponding platform. These processing operations take place on the basis of your consent, which you can revoke at any time at the end of this privacy policy.

The embedding on YouTube takes place through the technical procedure of so-called framing. Framing involves the simple insertion of an HTML link provided by YouTube into the code of a website to create a playback frame on the third-party site, thus enabling the video stored on YouTube servers to be played.

We use the framing codes generated by YouTube in the so-called "extended data protection mode". According to the information provided by the YouTube platform, the cookie activity and the resulting data collection is only linked to the use of the playback function of the video itself. The collection of data through a mere use of the website with framed content is prevented against this background.

 

In order to play the YouTube content, we need your consent (Art. 6 para. 1 lit. a) EU-DS-GVO). To protect your data, we use a so-called two-click solution. All YouTube content is deactivated by default and is only loaded and displayed by the YouTube servers after you click on the "Activate content" button. With this click, you consent to your IP address being transmitted to YouTube (YouTube, LLC 901 Cherry Ave. San Bruno, CA 94066 USA) and to the provider setting cookies in your browser. For your convenience, we remember your consent for 30 days via a so-called local storage object that we store in your browser. Once granted, consent can be revoked at any time.

 

LINKS SOCIAL MEDIA

On our website you will find links to the social media services of YouTube and Instagram. You can recognize links to the websites of the social media services by the designation with the respective company name. If you follow these links, you will reach the company website of MEKRA Lang GmbH & Co. KG at the respective social media service. When you click on a link to a social media service, a connection is established to the servers of the social media service. This transmits to the servers of the social media service that you have visited our website. In addition, further data is transmitted to the provider of the social media service. These are, for example:

  • Address of the web page where the activated link is located
  • Date and time of the call of the web page or the activation of the link
  • Information about the browser and operating system used
  • IP address

If you are already logged in to the corresponding social media service at the time the link is activated, the provider of the social media service may be able to determine your user name and possibly even your real name from the transmitted data and assign this information to your personal user account with the social media service. You can exclude this possibility of assignment to your personal user account if you log out of your user account beforehand.

The servers of the social media services are located in the USA and other countries outside the European Union. The data may therefore also be processed by the provider of the social media service in countries outside the European Union. Please note that companies in these countries are subject to data protection laws that do not generally protect personal data to the same extent as is the case in the member states of the European Union.

Please note that we have no influence on the scope, type and purpose of data processing by the provider of the social media service. For more information on the use of your data by the social media services integrated on our website, please refer to the privacy policy of the respective social media service

 

SSL ENCRYPTION

We use SSL encryption for security reasons and to protect the transmission of confidential content, such as requests that you send to us as the website operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.

If SSL encryption is activated, the data you transmit to us cannot be read by third parties.

 

DATA SECURITY

We have taken appropriate technical and organizational measures to protect your data against unauthorized access, misuse, unauthorized disclosure or alteration, and against loss or destruction. Your personal data will only be stored and processed within the European Union. Personal data will only be made available by us to those employees who need it to provide our websites and deliver the requested services and information.

However, you should also make sure that you take preventive steps to protect your personal information, especially by keeping your login information secret and by monitoring and controlling access to your computer.

 

CONTACT FORM / CONTACT BY E-MAIL (ART. 6 PARA. 1 LIT. A, B EU-DS-GVO)

There is a contact form on our website that can be used for electronic contact. If you write to us via the contact form, we process the data you provide in the contact form to contact you and answer your questions and requests.

Here, the principle of data economy and data avoidance is observed, in that you only have to provide the data that we absolutely need to contact you.
In the context of a contact request, we process the following data:
As mandatory information:

  • Salutation
  • Name
  • First name
  • E-mail address
  • Subject

As voluntary information:

  • Area
  • Phone
  • Company
  • Country

In addition, your IP address is processed for technical necessity and for legal protection. All other data are voluntary fields and can be provided optionally (e.g. to answer your questions more individually).

To protect the security and confidentiality of your data as best as possible, we implement appropriate security measures. Your request is transmitted to us in encrypted form.

If you contact us by e-mail, we will process the personal data provided in the e-mail solely for the purpose of processing your inquiry. If you do not use the forms offered for contacting us, no further data collection will take place.

 

APPLICANT PORTAL (ART. 6 PARA. 1 LIT. A, B EU-DS-GVO)

Applicant portal (Art. 6 para. 1 lit. a, b EU-DS-GVO)
Thank you for your interest in working for MEKRA Lang GmbH & Co KG. We are aware of the importance of your data and process the personal data you provide in the application form only for the purpose of effective and correct processing of the application procedure and for contacting you as part of the application process. The data will not be passed on to third parties without your consent.

As part of the application form, you will be asked to provide personal data. In doing so, we observe the principle of data economy and data avoidance by only requiring you to provide us with the data that we need to fully review your application documents, such as your resume, certificates and the like, or that we are legally obligated to collect. This mandatory information is marked with an *(asterisk). For technical necessity as well as for legal protection, your IP address is also processed.

For online applications, we collect and process the following data:

As mandatory information:

  • First name
  • Last name
  • Street, house number, postal code, city
  • Country
  • E-mail address
  • Resume etc.

As voluntary information:

  • Salutation
  • Academic title
  • Phone number
  • Salary requirements
  • Availability
  • Further information, if relevant

Without this data, we are unfortunately unable to check your application documents, which is why our application system does not allow the application documents to be uploaded in this case. Of course, you have the option to provide voluntary information in the application form.

To protect the security and confidentiality of your data as best as possible, we implement appropriate security measures. Your application documents are transmitted to us encrypted by our application system.

We store your data for the above-mentioned purpose until the application process has been completed and related deadlines have expired - at the latest six months after receipt of a decision.

 

PRESENCE IN OUR SOCIAL MEDIA

We are present in various "social media" in order to communicate with the customers, interested parties and users registered there and to be able to inform them about our offers there.

We would like to point out that you use this platform and its functions on your own responsibility. This applies in particular to the use of the interactive functions (e.g. commenting, sharing, rating).

We would also like to point out that your data may be processed outside the European Union.

In addition, your data may be processed for market research and advertising purposes. For example, usage profiles can be created from your usage behavior and the resulting interests. This allows, for example, advertisements to be placed within and outside the platforms that presumably correspond to your interests. Cookies are usually stored on your computer for this purpose. Independently of this, data that is not collected directly from your end devices may also be stored in the usage profiles (especially if you are a member of YouTube and logged in).

We, as the provider of this information service, do not collect or process any other data from your use of our service.

The processing of the users' personal data is based on our legitimate interests in effective information of the users and communication with the users pursuant to Art. 6 para. 1 p.1 lit. f. EU-DS-GVO. If you are asked by the respective providers for consent to data processing (i.e. you declare your consent, e.g. by ticking a checkbox or confirming a button), the legal basis of the processing is Art. 6 para. 1 p.1 lit. a., Art. 7 EU-DS-GVO.

 

OPPORTUNITY TO OPPOSE

If you are a member of a social network and do not want the network to collect data about you via our presence and link it to your stored membership data with the respective network, you must

  • log out of the respective network before visiting our website,
  • delete the cookies present on the device and
  • Exit and restart your browser.

After logging in again, however, you will once more be recognizable to the network as a specific user.

For a detailed description of the respective processing and the opt-out options, please refer to the information of the providers linked below.

Also in the case of requests for information and the assertion of user rights, we point out that these can be asserted most effectively with the providers. Only the providers have access to the users' data and can take appropriate measures and provide information directly. If you still need help, you can contact us.

  • Google / YouTube (Google Ireland Limited, Gordons House, Barrow Street, Dublin 4, Ireland)

Privacy policy: https://policies.google.com/privacy
Opt-Out: https://adssettings.google.com/authenticated

  • Instagram (Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA)

Privacy Policy/ Opt-Out: http://instagram.com/about/legal/privacy/

 

RIGHT TO INFORMATION, DELETION, BLOCKING, REVOCATION

If your personal data is processed, you are a data subject within the meaning of the GDPR and you are entitled to data subject rights against the responsible party (= website operator). You have the right at any time to request information free of charge about the data collected about you, its origin and recipients and the purposes and planned duration of storage and to have this data corrected, blocked or deleted in accordance with the statutory provisions. Furthermore, you have the right to be informed whether personal data has been transferred to a third country or to an international organization. If this is the case, you also have the right to receive information about the appropriate guarantees in connection with the transfer. In these cases, it is sufficient to send an e-mail with the specific request for information, correction, deletion or blocking to datenschutz@atarax.de.
If you have consented to the use of your personal data, you can revoke your consent at any time without giving reasons by sending an e-mail to datenschutz@atarax.de with effect for the future. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.

 

RIGHT OF OBJECTION

If we process your personal data for the purpose of direct marketing, you have the right to object to this data processing at any time without giving reasons. This also applies to profiling, insofar as it is related to direct advertising.

If you object to processing for direct marketing purposes, we will no longer process your personal data for these purposes. The objection is free of charge and can be made form-free.

In the event that we process your data to protect legitimate interests, you may object to this processing at any time on grounds relating to your particular situation; this also applies to profiling based on these provisions.

We will then no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the purpose of asserting, exercising or defending legal claims.

 

COMPLAINT ABOUT DATA PROTECTION BREACHES TO THE SUPERVISORY AUTHORITY

If you assume that data protection regulations have been disregarded in the collection, processing or use of your personal data and that your rights have been violated, you can contact the relevant data protection authority. This authority will investigate the complaint and inform you of the outcome. For Bavaria, this is the

Bavarian State Office for Data Protection Supervision
Promenade 27 (Castle)
91522 Ansbach
Phone: +49 (0) 981 53 1300
Fax: +49 (0) 981 53 98 1300
E-mail: poststelle@lda.bayern.de

 

AUTOMATED INDIVIDUAL CASE DECISIONS

We do not use purely automated processing to reach a decision.

 

ONLINE OFFERS WITH CHILDREN

Persons under the age of 16 may not submit personal data to us or provide a declaration of consent without the consent of their legal guardians. We encourage parents and guardians to actively participate in their children's online activities and interests.

 

LINKS TO OTHER PROVIDERS

Our website also contains - clearly recognizable - links to the websites of other companies. Insofar as there are links to websites of other providers, we have no influence on their content. Therefore, no guarantee or liability can be assumed for these contents. The respective provider or operator of the pages is always responsible for the content of these pages.

The linked pages were checked for possible legal violations and recognizable infringements at the time of linking. Illegal contents were not recognizable at the time of linking. However, a permanent control of the contents of the linked pages is not reasonable without concrete evidence of a violation of the law. If we become aware of any infringements, such links will be removed immediately.

 

OTHER NOTES

Please note that complete confidentiality and data security cannot be guaranteed when communicating via the Internet (e.g. by e-mail). We therefore recommend sending confidential information by post.

 

CONTACT
FEEDBACK