Privacy Policy

1. Name and contact data of responsible person for processing and the company data protection officer

This data protection notice applies for data processing by:

Responsible Party:
BEB Stahlbearbeitung KG (hereinafter: BEB), Josef-Baumann-Str. 29a, 44805 Bochum, Germany
Telephone: +49 (0) 234 / 89 11 30, Email: info@beb-stahl.de, Website: www.BEB-Stahl.de,

Our company’s data protection officer is accessible via

Heimann und Drabas, Steuerberater Rechtsanwalt Partnergesellschaft,
Pallastsstr. 80, 44575 Castrop-Rauxel, Germany,
Telephone: + 49 (0) 2305 / 35 60 40
Email: datenschutz@shd-tax.de

2. Collection and storage of personal data and the nature and purpose of their usage and deletion

a) When visiting the website

When you enter our website www.BEB-Stahl.de, the browser used by your device automatically transfers information to the server of our website. This information is stored temporary in a so-called log file. The following information is, without action on your part, collected and saved until automatic cancellation:

IP address,
Date and time of the access,
Name and URL of the accessed file(s),
Website, from which access was made (Referrer-URL)
Websites you are addressing after visiting our website;
Browser used and, if necessary, the operating system of your computer as well as the name of your access provider.

We are processing the aforementioned data for the following purposes:

Ensuring a smooth connection and operation of the website,
Ensuring a convenient use of the website,
Analysis of the system security and stability and
for further administrative purposes.

The legal basis for data processing is Art. 6 (1) sentence 1 (f) GDPR. Our legitimate interest is resulting from the abovementioned purposes of data processing. In no event we will use the collected data for any conclusions being drawn to your person.

The data is as well stored in the log files of our system. Not affected is your IP-address, because it is stored only anonymously (just the first two blocks of the IP address), or other data enabling the connection between the data and the individual user.

The data will be deleted as soon as it is are no longer necessary for the purpose it was first collected for. In case of data received by visiting the website, this is the case once the session is over. The (anonymised) IP-date, which is stored in the log files, is deleted after one year.

Furthermore, when visiting our website, it uses cookies and analysis services. Further details can be found in Clauses 4 and 5 of this privacy policy.

b) When using our contact form

For questions of any kind, we offer you the option to contact us by using the contact form on our website. It is necessary to provide a valid email address, in order to know about the sender and to answer your request. Further information can be provided voluntarily.

Data processing for contact purposes is based on Art. 6 (1) sentence 1 (a) GDPR, thus your consent when sending the data with reference to the privacy policy.

The personal data collected by using the contact form will be deleted automatically after execution of your request.

3. Data transfer
Your personal data will not be transferred to third parties for other than the following purposes.

We only transfer your personal data to third parties, if:

you have given your explicit consent by means of Art. 6 (1) sentence 1 (a) GDPR,
the transfer is required for assertion, exercise or defence of legal claims and if there is no reason to believe, that you have an overriding interest warranting the non-disclosure of your data, by means of Art. 6 (1) sentence 1 (f) GDPR
it is the case, that there is a legal obligation for the transfer, according to Art. 6 (1) sentence 1, (c) GDPR, and
this is permitted by law and in line with Art. 6 (1) sentence 1 (b) GDPR, for execution of contracts with you.

4. Cookies

We use cookies on our website. Cookies are small text files, which are automatically created by your browser and stored on your device (laptop, tablet computer, smartphone or similar), when you visit our website. Cookies do not harm your device and do not contain any virus, Trojans or other malware.

Information in connection with the specific device used is placed on the cookie. However, this does not mean, that we directly gain knowledge about your identity.

One purpose of the cookies is to make your use of our online services more convenient for you. For this, we use so-called “session cookies”, enabling us to recognise your prior visit of parts of our website. These cookies are automatically deleted after your visit.

In addition we use temporary cookies that are stored on your device for a specified period of time to improve usability. When you visit our website again, it will automatically recognize your prior visit, as well as which commands and settings you have made, in order to not have them entered again.

Furthermore, we use cookies to collect statistical data of the use of our website and to evaluate this for the purpose of optimizing our offers for you. When you next visit our website to use our services, these cookies will automatically recognize you had already visited us. They are automatically deleted after a defined time.

The data processed by cookies is necessary to safeguard our legitimate interests as well as of third parties, as per Art. 6 (1) sentence 1 (f) GDPR.

Most browsers accept cookies automatically. Alternatively, your browser can be configured to always reject the cookies or to inform you before a new cookie is created. Disabling cookies may limit the functionality of our website.

When visiting our website you will be informed about the use of cookies for analysis purposes. Your consent to the processing of the personal data used in this context is obtained. In this context a reference to our privacy policy is made.

5. Analytical Tools
The tracking measures we use are based on Art. 6 (1) sentence 1 (f) GDPR. With the tracking measures used, we want to ensure a need-based design and the continuous optimization of our website. On the other hand, we use the tracking measures to statistically record the use of our website and to optimize our service for you. These interests are regarded as legitimate within the meaning of the aforementioned prescription. Furthermore, when you visit our website, you are expressly requested to consent to the use of cookies for analysis purposes as well, so that in the case of existing consent, consent pursuant to Art. 6 (1) (a) GDPR has been given.

6. Data security

Within the visit of our website, we use the widely-used SSL system (Secure Socket Layer) in connection with the highest level of encryption that is supported by your browser. In general, this is a 256-bit encryption. If your browser does not support 256-bit encryption, we will use 128-bit v3 technology instead. Whether a single page of our website is encrypted is shown by the closed representation of the key or lock icon in the status bar at the bottom of your browser.

We also use appropriate technical and organisational security measures to protect your data against accidental or deliberate manipulation, partial or total loss, destruction or against unauthorised access by third parties. Our security measures are constantly being improved according to the technological development.

7. Your rights as a data subject

As far as your personal data is processed during the visit of our website, you have the following rights as a "data subject" within the meaning of the GDPR:

.1 Right of access

You can request information from us about whether your personal data is processed by us. There is no right of access if the information must be kept secret for other reasons, in particular because of an overriding legitimate interest of a third party. Deviating hereof, there may be an obligation to provide the information if your interests outweighs the interests of secrecy, in particular taking into account any imminent damage. The right of access is also excluded if the data is stored only because it may not be deleted due to legal or statutory retention periods or serve exclusively for data protection or data protection control, if the exchange of information would require a disproportionate effort and processing for other purposes is excluded by appropriate technical and organisational measures. If in your case the right of access is not excluded, and your personal data is processed by us, you can ask us about the following information:

the purposes of the processing,
the categories of personal data concerned;
the recipients or categories of recipient to whom the personal data have been or will be disclosed, in particular recipients in third countries or international organisations;
where possible, the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period;
the existence of the right to request from the controller rectification or erasure of personal data or restriction of processing of personal data concerning the data subject or to object to such processing;
the right to lodge a complaint with a supervisory authority;
where the personal data are not collected from the data subject, any available information as to their source;
the existence of automated decision-making, including profiling, referred to in Article 22(1) and (4) GDPR and, at least in those cases, meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for the data subject.

if applicable, in case of transfers to recipients in third countries, if there is no EU Commission decision on the adequacy of the protection level under Art. 45 (3) GDPR, information on appropriate safeguards pursuant to Art. Art. 46 (2) GDPR for the protection of personal data.

.2 Right to rectification

If you notice that we have inaccurate personal data, you shall have the right to obtain from us without undue delay the rectification of inaccurate personal data concerning you. In case of incomplete personal data concerning you, you can request the completion.

7.3 Right to erasure (“right to be forgotten”)

You have a right to erasure (“Right to be forgotten”), unless the processing is necessary for the exercise of the right to freedom of expression, the right to information or to fulfil a legal obligation for the performance of a task of public interest, where one of the following grounds applies:

The personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed
The justification for processing was only your consent, which you have revoked.
You have objected to the processing of your personal data which we have made public.
You have objected to the processing of personal data not disclosed by us and there are no overriding proper reasons for the processing.
Your personal data has been unlawfully processed.
The deletion of personal data is required to fulfil a legal obligation to which we are subject.

There is no claim for deletion where, in case of legitimate non-automated data processing, deletion is not possible or only possible with disproportionate effort due to the special type of storage and your interest in deletion is low. In this case, the deletion is replaced by the limitation of processing.

7.4 Limitation of processing

You may require us to restrict processing if any of the following applies:

You dispute the accuracy of your personal data. The limitation may be required in this case for the duration that allows us to verify the accuracy of the data.
The processing is unlawful, and you require the limitation instead of the deletion of the use of your personal data.
Your personal data will no longer be needed by us for the purposes of processing that you may need for the assertion, exercise or defence of legal claims.
You have objected per Art. 21 (1) GDPR. The limitation of processing may be required as long as it is not certain that our legitimate reasons prevail your reasons.

Limitation of processing means that the personal data are processed only with your consent or to assert, exercise or defend legal claims or to protect the rights of another natural or legal person or for reasons of substantial public interest. Before we remove the limitation, we have a duty to inform you about it.

7.5 Data portability

You have the right to data portability if the processing is based on your consent (Article 6 (1) sentence 1 (a) or Article 9 (2) (a) GDPR) or on a contract to which you are a party and the processing is done using automated processes. The right to data portability in this case includes the following rights, unless this does not affect the rights and freedoms of others:
You may require us to receive the personal data you provide to us in a structured, common and machine-readable format. You have the right to transfer this data to another responsible person without hindrance on our part. As far as technically possible, you may require us to transfer your personal data directly to another controller.

7.6 Right to object

Insofar as the processing is based on Article 6 (1) sentence 1 (e) GDPR (performance of tasks carried out in the public interest or in the exercise of official authority) or on Article 6 (1) (1) (f) GDPR (legitimate interest of the controller or a third party), you have the right, at any time, to object to the processing of your personal data for reasons of your particular situation. This also applies to profiling based on Art. 6 (1) sentence 1 (e) or letter (f) GDPR. After exercising your right to object, we will no longer process your personal data unless we can provide compelling legitimate grounds for processing that prevail your interests, rights and freedoms, or the processing is for the purposes of asserting, exercising or defending legal claims.
You may at any time object to the processing of your personal data for purposes of direct marketing. This also applies to a profiling, which is associated with such direct marketing. After exercising this right of objection, we will no longer use the personal data concerned for direct marketing purposes. You may inform us about the objection by telephone, e-mail or to our company's postal address listed at the beginning of this Privacy Policy.

7.7 Revocation of a consent

You have the right to revoke your consent at any time with effect for the future. The revocation of the consent can be communicated informally by phone, by e-mail, or to our postal address. The revocation does not affect the lawfulness of the data processing which has taken place on the basis of the consent until receipt of the revocation. Upon receipt of the revocation, the data processing, which was based solely on your consent, is set.

7.8 Right to complaint

If you consider that the processing of your personal data is unlawful, you may lodge a complaint with a data protection supervisory authority that has jurisdiction over your place of residence or employment or the location of the possible breach.

8. Status and update of this Privacy Policy

This Privacy Policy is currently valid and has the status of May 25, 2018.

It may be necessary to change this Privacy Policy due to the further development of our website and offers thereof or due to amended legal, official or judicial requirements. The current Privacy Policy can be viewed and printed by you at any time on our website at www.BEB-Stahl.de ,/Datenschutzerklärung.