Data Protection Statement
Note: This is a translation of our German data protection statement which has been drawn up according to German law.
Data protection statement of IPI GmbH
Welcome to our website. Thank you for your interest in our company. We take the protection of your personal data very seriously. We process your data in accordance with the applicable legal provisions for protecting personal data, in particular the EU General Data Protection Regulation (EU GDPR) and the country-specific implementation laws valid for us. With the help of this data protection statement, we provide comprehension information about the processing of your personal data by IPI GmbH and the rights to which you are entitled.
Personal data is the information which makes it possible to identify a natural person. In particular, this includes your name, date of birth, address, telephone number, e-mail address, but also your IP address.
Data is anonymous when no personal reference to the user can be established.
Data controller and data protection officer
Untere Industriestraße 5
Telephone +49 (9827) 92787-0
Telefax +49 (9827) 92787-9000
Contact information of the data protection officer
Your rights as a data subject
First of all, we would like to inform you about your rights as a data subject. These rights are stipulated in Art. 15-22 EU GDPR. These include:
- The right of access by the data subject (Art. 15 EU GDPR),
- The right to erasure (Art. 17 EU GDPR),
- The right to rectification (Art. 16 EU GDPR),
- The right to data portability (Art. 20 EU GDPR),
- The right to restriction of processing (Art. 18 EU GDPR),
- The right to object (Art. 21 EU GDPR).
In order to exercise these rights, please contact: firstname.lastname@example.org . The same applies if you have any questions regarding data processing in our company. You also have a right to complain at a data protection authority.
Right to object
Please observe the following in connection to the right to object:
If we process your personal data for the purpose of direct advertising, you have the right to object to this data processing at any time without stating reasons. The same also applies to profiling, insofar as it is in connection with direct advertising.
If you object to processing for direct advertising purposes, your personal data will no longer be processed for these purposes. The objection is free-of-charge and can be made informally, if possible to: email@example.com .
In the event that we process your data to safeguard legitimate interests, you can object to such processing at any time for reasons arising from your particular situation; this also applies to profiling based on these provisions.
We will not process your personal data any longer, unless we can substantiate legitimate reasons for the processing which outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.
Purposes and legal basis of data processing
During the processing of your personal data, the regulations of the EU GDPR, the (new) Federal Data Protection Act and all other valid data protection regulations are adhered to. The legal basis for data processing arises in particular from Art. 6 EU GDPR.
We use your data for business initiation, to fulfil contractual and legal obligations, to execute the contractual relationship, to offer products and services and to strengthen the customer relationship, which may also include analyses for marketing purposes and direct advertising.
Your consent also constitutes a data protection permission prerequisite. In doing this, we will inform you about the purposes of data processing and about your right of revocation. If the consent also refers to the processing of special categories of personal data, we will expressly point this out to you in the consent.
Processing of special categories of personal data in the sense of Art. 9 para. 1 EU GDPR is only applicable if this is required by law and there is no reason to believe that your legitimate interest in the exclusion of processing prevails.
Transfer to third parties
We will only transfer your data to third parties within the framework of legal regulations or with the applicable consent. Otherwise, data will not be transferred to third parties unless we are obliged to do so by mandatory legal provisions (transfer to external bodies such as supervisory authorities or law enforcement authorities).
Data recipient/Recipient categories
Within our company we ensure that your data is only received by the persons who need your data to fulfil their contractual and legal obligations.
In many cases, service providers support our specialist departments in fulfilling their tasks. The necessary data protection agreements have been concluded with all service providers. This applies to the dispatch of our newsletter.
Transfer to a third countries/intention to transfer to a third country
Data will only be transferred to third countries (outside the European Union or the European Economic Area) if this is necessary for the performance of the contractual obligation or required by law or you have given us your consent.
We do not transfer your personal data to any service provider or group of companies outside the European Economic Area unless this is authorised by you within the framework of the necessary fulfilment of the contract. Adherence to the data protection level is guaranteed as applicable.
Duration of storage of data
We store your data as long as it is required for the respective processing purpose. Please note that numerous retention periods require that data continue to be (must be) stored. This applies in particular to commercial or tax storage obligations (e.g. German Commercial Code, Fiscal Code, etc.). If there are no further storage obligations, the data will be routinely deleted once the purpose has been achieved.
In addition, we may retain data if you have given us permission to do so or if legal disputes arise and we use evidence within statutory limitation periods of up to thirty years; the regular limitation period is three years.
Secure transfer of your data
In order to protect the data stored by us against accidental or intentional manipulation, loss, destruction or access by unauthorised persons, we use appropriate technical and organisational security measures. Security levels are continuously checked in cooperation with security experts and adapted to new security standards.
The data exchange from and to our website is always encrypted. We offer HTTPS as the transmission protocol for our website, in each case using up-to-date encryption protocols. Furthermore, it is possible to use alternative communication channels (e.g. mail).
Obligation to provide data
Various personal data is necessary for the establishment, execution and termination of the obligation and the fulfilment of the associated contractual and legal obligations. The same applies to the use of our website and the various functions it provides.
We have summarised the details for you in the above section. In certain cases, data must also be collected or made available due to legal regulations. Please note that it is not possible to process your request or to perform the underlying obligation without providing this data.
Categories, sources and origin of data
The respective context determines which data we process: This depends on whether you place an order online or enter an enquiry into our contact form, whether you send us an application or submit a complaint.
Please note that we may also make information available separately at a suitable location for special processing situations, e.g. when uploading application documents or making a contact request.
When you visit our website and when we send our newsletter, we collect and process the following data:
- Name of the internet service provider
- Information about the website from which you are visiting us
- Web browser and operating system used
- The IP address assigned by your internet service provider
- Requested files, transferred data volume, downloads/file export
- Information about the web pages you visit on our website, including date and time
- For reasons of technical security (in particular to prevent attempts to attack our web server) this data is stored in accordance with Art. 6 para. 1 (f) EU GDPR. After 7 days at the latest, anonymisation is carried out by shortening the IP address, so that no reference to the user is established.
User profiles/web tracking procedures
This website uses Google Analytics, a web analysis service of Google Inc. (“Google”). Google Analytics uses so-called “cookies”, text files which are stored on your computer to enable an analysis of your usage of the website. The information generated by the cookie about your usage of this website is generally transferred to a Google server in the USA and stored there. However, if IP anonymisation is activated on this website, Google will shorten your IP address within Member States of the European Union or in other countries party to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your usage of the website, to compile reports on website activity and to provide the website operator with other services relating to website and internet use. In the framework of Google Analytics, the IP address transmitted by the user’s browser is not merged with other Google data. You may refuse the storage of cookies by selecting the appropriate settings on your browser software, however please note that if you do this you may not be able to use the full functionality of this website. You can also prevent Google from collecting the data generated by the cookie and relating to your usage of the website (including your IP address) and prevent Google from processing this data by downloading and installing the browser add-on available under the following link. The up-to-date link is http://tools.google.com/dlpage/gaoptout?hl=de.
Social plugins of social networks
Use of Facebook social plugins
On our websites, we use social plugins (“plugins”) of the social network facebook.com, which is operated by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA (“Facebook”). The plugins are marked with a Facebook logo or the addition “Facebook social plugin”.
If you access one of our websites which contains such a plugin, your browser establishes a direct connection to the Facebook servers. The content of the plugin is transmitted by Facebook directly to your browser and integrated into the website.
By integrating the plugins, Facebook receives information that you have accessed the corresponding page of our website. If you are logged in to Facebook, Facebook can attribute the visit to your Facebook account even if you have not clicked on the “Like” button. If you interact with the plugins, such as pressing the “Like” button or posting a comment, the respective information is sent directly from your browser to Facebook and stored there.
Even if you do not have a Facebook account, Facebook may collect data about you, such as your IP address. The purpose and scope of the data collection and further processing and use of the data by Facebook, as well as your relevant rights and settings for the protection of your privacy, can be found in the Facebook data protection information.
If you do not want Facebook to collect data about you via our website, you must log out of Facebook before visiting our website. Additionally, you can also use add-ons to install appropriate blocking tools for your browser.
Data protection statement for the use of Twitter
On our homepage, you will find functions of Twitter. These are provided by Twitter, Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103. By using Twitter and the “Re-Tweet” function, the websites you visit are linked to your Twitter account and made known to other users. Data is also transmitted to Twitter.
Use of XING Share Buttons
In the context of a contact request, we collect and process the following data:
- Surname, first name
- Contact data
- Information about wishes and interests
- Business area
Cookies (Art. 6 para. 1 (f) EU GDPR/Art. 6 para. 1 (a) EU GDPR with consent)
Our web pages use so-called cookies in several places. They serve the purpose of making our website more user-friendly, effective and secure. Cookies are small text files that are stored on your computer and saved by your browser (locally on your hard drive).
These cookies enable us to analyse how users use our websites. In this way we can design the website content according to visitor requirements. In addition, cookies enable us to measure the effectiveness of a particular advert and to have it placed depending, for example, on the user’s thematic interests.
Most of the cookies we use are so-called “session cookies”. These are automatically deleted after your visit. Permanent cookies are automatically deleted from your computer if they are no longer valid (usually after six months) or if you delete them yourself before their validity expires.
Most web browsers accept cookies automatically. However, you can usually change the settings of your browser if you prefer not to send the information. You can still use the services on our website without restrictions (exception: configurators).
Please note: If you deactivate cookies, not all functions of our website may be fully usable.
We use Adobe Typekit to create an appealing design for our website. Typekit is a service of Adobe Systems Software Ireland Ltd., 4-6 Riverwalk, Citywest Business Campus, Dublin 24, Republic of Ireland (“Adobe”), which gives us access to the Adobe font library. In order to integrate the fonts we use, your web browser must connect to an Adobe server in the USA and download the respective font required. Through this, Adobe receives information that your device’s IP address has been used to access our website. Adobe has submitted to the EU-US Privacy Shield and is committed to ensuring the European data protection principles and the local data protection level also in the context of the data processing taking place in the USA. The legal basis is Art. 6 para. 1 sentence 1 (f) GDPR, based on our legitimate interest in the visually appealing design of our website.
You can find further information about Adobe Typekit at .
In the context of newsletters, we collect and process the following data:
- Surname, first name
- E-mail address
In the context of competitions, we collect and process the following data:
- Surname, first name
- E-mail address
- Telephone number
Automatic case-by-case decisions
We do not use purely automated processing processes to bring about a decision.
Links to other providers
Our website also contains – clearly recognisable – links to the websites of other companies. Insofar as there are links to websites of other providers, we have no influence on their contents. Therefore, no guarantee and liability can be assumed for these contents. The respective provider or operator of the pages is always responsible for the contents of these pages.
At the time of linking, the linked pages were checked for possible legal infringements and recognisable legal violations. Illegal contents were not recognisable at the time of linking. However, permanent monitoring of the content of the linked pages is unreasonable without concrete evidence of a violation of the law. Upon notification of violations of the law, such links will be removed immediately.
Contact form/contact via e-mail (Art. 6 para. 1 (a) and (b) EU GDPR)
There is a contact form on our website which can be used for electronic contacting. If you write to us using the contact form, we will process the information you provide in the contact form to contact you and answer your questions and requests.
The principle of data economy and data avoidance is observed, in that you only have to provide the data that we absolutely need to contact you. This includes your e-mail address and the message field itself. In addition, your IP address is processed for technical requirements and for legal protection. All other data are voluntary fields and can be entered optionally (e.g. for a more personalised response to your questions).
If you contact us by e-mail, we will process the personal data provided in the e-mail solely for the purpose of processing your enquiry.
Newsletter (Art. 6 para. 1 (a) EU GDPR)
You can subscribe to a free newsletter on our website. The e-mail address provided when subscribing to the newsletter, as well as your name and your company will be used to send the personalised newsletter.
The principle of data economy and data avoidance is observed, as only the e-mail address (if applicable, name for personalised newsletters) is marked as a mandatory field. For technical reasons and for legal protection, your IP address is also processed when subscribing to the newsletter.
Of course, you can cancel your subscription at any time via the unsubscribe option provided in the newsletter and thus revoke your consent. Furthermore, it is also possible to unsubscribe directly from the newsletter at any time via our website.
Competition/consent to advertising (Art. 6 para. 1 (a) and (b) EU GDPR)
On our website, you have the opportunity to take part in our competition. If you fill in the competition form, we will process the data provided there exclusively for the purpose of the competition.
The principle of data economy and data avoidance is observed, in that you only have to provide the data that we require to carry out the competition and for notifying you if you win. This includes e.g. your surname, your company and your e-mail address.
Mandatory fields are marked with an (*). For technical reasons and for legal protection, your IP address is also processed. The other fields are optional and can be filled in if you should wish to do so. We cannot realise the competition without the information from the mandatory fields. Participation is not possible in that case.
In the context of the competition mask, you have furthermore the possibility to provide us with consent for advertising. Of course it is possible to take part in the competition without giving your consent for advertising.
If you provide us with your consent by ticking the respective checkbox, we also process your data in order to send you information and offers about our products/services (newsletter) via e-mail.
You can revoke your consent at any time without stating reasons at +49 (9827) 92787-0, via e-mail to firstname.lastname@example.org or by mail to IPI GmbH, Untere Industriestraße 5, 91586 Lichtenau, Germany.
Advertising purposes (Art. 6 para. 1 (f) EU GDPR)
IPI GmbH is interested in maintaining the customer relationship with you and sending you information and offers about our products/services (newsletter). Therefore, we process your data in order to send you relevant information and offers via e-mail.
If you do not wish to do so, you can object to the use of your personal data for the purpose of direct advertising at any time; this also applies to profiling insofar as it is connected to direct advertising. If you object, we will no longer process your data for this purpose.
The objection can be made free of charge and informally without stating reasons and, if possible, it should be addressed to +49 (9827) 92787-0, via e-mail to email@example.com or by mail to IPI GmbH, Untere Industriestraße 5, 91586 Lichtenau, Germany.