PRIVACY POLICY
In principle, you can use our website without providing personal data. In individual cases, however, it may be necessary to collect and process your personal data in order to use certain functions of our website. In addition, in order to optimize our website and services, we collect and process personal data, which we process in accordance with data protection regulations.
We take the protection of your personal data very seriously and would therefore like to inform you about your rights and the type and scope of the respective data collection in the following.
1. Person responsible and contact person for data protection inquiries
Person responsible for processing within the meaning of the Basic Data Protection Regulation (DS-GVO) and the Federal Data Protection Act (BDSG):
SET GmbH
Gewerbering 17, 09337 Hohenstein-Ernstthal OT Wüstenbrand
Mr. Tom Kretzschmar
Phone: +493723-667077
E-mail:
service@setgmbh.com
2. Definitions
Personal data
Personal data is any information relating to an identified or identifiable natural person (hereinafter "data subject"). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
Person concerned
A data subject is that person whose personal data are processed by the data controller.
Processing
Processing is any operation or set of operations, carried out with or without the aid of automated means, relating to personal data, such as collection, recording, organization, arranging, filing, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
Profiling
Profiling is any automated processing of personal data consisting of the use of such personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects relating to that natural person's performance at work, economic situation, health, personal preferences, interests, reliability, conduct, location or change of location.
Pseudonymization
Pseudonymization is the processing of personal data in such a way that the personal data can no longer be assigned to a specific data subject without the inclusion of additional information, provided that this additional information is stored separately and is subject to technical and organizational measures that ensure that the personal data is not assigned to an identified or identifiable natural person.
Person responsible
The responsible person is the person who decides on the purposes and means of processing personal data and who carries out the processing accordingly.
Processor
The processor is another natural or legal person, public authority, institution or other body that processes personal data on behalf of the controller.
Recipient
The recipient is a natural or legal person, authority, institution or other body to whom personal data is disclosed.
Consent
The data subject's consent shall mean any freely given specific, informed and unequivocal expression of his or her wishes in the form of a declaration or other unequivocal affirmative act by which the data subject signifies his or her consent to the processing of personal data relating to him or her.
Violation of the protection of personal data
A personal data breach is a breach of security leading to the destruction, loss or alteration, whether accidental or unlawful, or unauthorized disclosure of or access to personal data transmitted, stored or otherwise processed.
Biometric data
Biometric data are personal data concerning the physical, physiological or behavioural characteristics of a natural person, obtained by means of special technical procedures, which allow or confirm the unique identification of that natural person, such as facial images or dactyloscopic data.
Health data
Health data are personal data relating to the physical or mental health of a natural person, including the provision of health services, and from which information on his or her state of health can be derived.
Regulatory Authority
The supervisory authority is an independent state body established by a member state pursuant to Art. 51 DS-GVO, which is responsible for monitoring compliance with the laws and regulations on data protection.
3. Information on the processing of personal data
We process your personal data by various technical means and, if necessary, by use of other service providers. We would like to inform you about the concrete details of processing in the following points.
Visiting our website
- When you visit our website, i.e. if you do not register or otherwise provide us with information, we only collect the personal data that your browser sends to our server. If you would like to view our website, we collect the following data, which is technically necessary for us to display our website and to ensure its stability and security (legal basis is Art. 6 para. 1 p. 1 lit. f DS-GVO, § 15 German Teleservices Act (TMG))
- IP-Adresse und Service-Provider
- Datum und Uhrzeit der Anfrage
- Inhalt der Anforderung (konkrete Seite)
- Zugriffsstatus/HTTP-Statuscode
- jeweils übertragene Datenmenge
- Website, von der die Anforderung kommt
- Browser inkl. Sprache und Softwareversion
- Betriebssystem und dessen Oberfläche
- The data listed in paragraph 1 are also automatically stored in the log files of our server. The log data is stored separately from other data and can only be viewed by the host. The storage period of the log data is 7 days. The legal basis for the processing of your data when visiting our website is Art. 6 para. 1 sentence 1 lit. f DS-GVO, § 15 German Teleservices Act (TMG).
Use of cookies
- In addition to the data mentioned above, cookies are stored on your computer when you use our website. Cookies are small text files that are stored on your hard drive in accordance with the browser you are using and through which certain information is transmitted to the site that sets the cookie (in this case, by us). Cookies cannot execute programs or transfer viruses to your computer. They are used to make the Internet offer as a whole more user-friendly and effective.
- This website uses the following types of cookies, the scope and function of which are explained below:
Transient cookies
Persistent cookies - Transient cookies are automatically deleted when you close the browser. This includes in particular the session cookies. These store a so-called session ID, with which various requests from your browser can be assigned to the shared session. This allows your computer to be recognized when you return to our website. The session cookies are deleted when you log out or close the browser.
- Persistent cookies are automatically deleted after a specified period of time, which may vary depending on the cookie. You can delete the cookies in the security settings of your browser at any time.
- You can configure your browser settings to suit your preferences and also refuse to accept third-party cookies or all cookies. Please note that you may not be able to use all the functions of this website if you do so. The legal basis for the use of cookies is Art. 6 para. 1 p. 1 lit. f DS-GVO.
Use of the contact form
- When you contact us via the contact form on our website, the data you enter (your e-mail address and regularly your name, your telephone number and the other data you provide) will be stored by us at the time you send your request in order to process your request.
- As an alternative to the contact form, you can also contact us via the e-mail address provided on our website, which can be found in the imprint.
- You can refuse the processing of your personal data at any time by sending an e-mail to service@setgmbh.com or object to the processing of your personal data to the person(s) listed in section 1. If you contact us directly by e-mail, you can object to the processing of your personal data at any time using the same channels.
- We delete the processing of the data arising in this context after the storage is no longer necessary or restrict the processing if there are legal obligations to keep records. The legal basis is Art. 6 para. 1 p. 1 lit. f DS-GVO.
- If the purpose of your contact is to conclude a contract, the additional legal basis for the processing of your personal data is Art. 6 para. 1 lit. b DS-GVO.
Matomo (former Piwik)
- This website uses the web analytics service Matomo to analyze and regularly improve the use of our website. With the statistics obtained we can improve our offer and make it more interesting for you as a user. The legal basis for the use of Matomo is Art. 6 para. 1 p. 1 lit. f DS-GVO.
- 2. For this evaluation, cookies (see above section 2., "Use of cookies") are stored on your computer. The information collected in this way is stored by the responsible person exclusively on his server in Germany. You can adjust the evaluation by deleting existing cookies and preventing the storage of cookies. If you prevent the storage of cookies, we point out that you may not be able to use this website to its full extent. You can prevent the storage of cookies by adjusting the settings in your browser. The prevention of the use of Matomo is possible by removing the following check mark and thus activating the opt-out plug-in:
Sie sehen gerade einen Platzhalterinhalt von Standard. Um auf den eigentlichen Inhalt zuzugreifen, klicken Sie auf den Button unten. Bitte beachten Sie, dass dabei Daten an Drittanbieter weitergegeben werden.
Weitere Informationen - This website uses Matomo with the extension "AnonymizeIP". This means that IP-addresses are processed in a shortened form, a direct personal reference can be excluded. The IP address transmitted by your browser via Matomo is not merged with other data collected by us.
- The program Matomo is an open source project. Information of the third party provider on data protection can be found at https://matomo.org/docs/privacy/. https://matomo.org/docs/privacy/.
Integration of Google reCAPTCHA
- To protect the contact form on our website we use the Google service reCAPTCHA. This is a query as to whether the input into the contact form was made by a human being or abusively by an automated, machine processing. The legal basis for the use of Google ReCaptcha is Art. 6 para. 1 p. 1 lit. f DS-GVO.
- By visiting the website, the previously described reCAPTCHA is retrieved from a Google server. In addition, the data mentioned in section 3, "Use of cookies" and "Visit to our website", of this declaration are transmitted. This happens regardless of whether Google provides a user account through which you are logged in or whether no user account exists. If you are logged in at Google, your data will be assigned directly to your account. If you do not wish to be associated with your Google profile, you must log out of your Google account before visiting our website. Google stores your data as user profiles and uses them for the purposes of advertising, market research and/or demand-oriented design of its website. Such an evaluation is carried out in particular (even for users who are not logged in) for the purpose of providing needs-based advertising. You have the right to object to the creation of these user profiles, whereby you must contact Google to exercise this right.
- Information of the provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Further information on the purpose and scope of data collection and processing by the plug-in provider can be found in the provider's privacy policy. There you will also find further information on your rights and settings to protect your privacy: https://www.google.de/intl/de/policies/privacy. Google also processes your personal data in the USA and has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.
Integration of Google Maps
- On this website we use the offer of Google Maps. This allows us to display interactive maps directly on the website and enables you to use the map function conveniently. The legal basis for the use of Google Maps is Art. 6 para. 1 p. 1 lit. f DS-GVO.
- By visiting the website, Google receives the information that you have called up the corresponding subpage of our website. In addition, the data mentioned in section 3, "Use of cookies" and "Visit to our website", of this declaration is transmitted. This occurs regardless of whether Google provides a user account through which you are logged in or whether no user account exists. If you are logged in at Google, your data will be assigned directly to your account. If you do not want the assignment with your profile at Google, you have to log out before activating the button. Google stores your data as user profiles and uses them for the purposes of advertising, market research and/or demand-oriented design of its website. Such an evaluation is carried out in particular (even for users who are not logged in) to provide need-based advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, whereby you must contact Google to exercise this right.
- Information of the provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Further information on the purpose and scope of data collection and processing by the plug-in provider can be found in the provider's privacy policy. There you will also find further information on your rights and settings to protect your privacy: https://www.google.de/intl/de/policies/privacy. Google also processes your personal data in the USA and has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.
Integration of Font Awesome
- On this website, we use so-called web fonts provided by Fonticons for a uniform and improved presentation. These are fonts that are retrieved from an external server when you call up our website and are stored in the cache of your browser for the display of our website. The legal basis for the use of Font Awesome Web Fonts is Art. 6 para. 1 p. 1 lit. f DS-GVO.
- When you call up a page, your browser loads the required web fonts onto your PC in order to display texts and fonts correctly. In addition, the data mentioned in section 3, "Use of cookies" and "Visit to our website", of this declaration is transmitted. For this purpose, the browser you use must connect to Fonticons' servers. This tells Fonticons that your IP address is used to access our website. If your browser does not support web fonts, a default font is used by your computer.
- Information provided by the provider: Fonticons Inc, 6 Porter Road, Apartment 3R, Cambridge, MA 02140, United States. For more information about Font Awesome, please visit https://fontawesome.com/help.
Integration of YouTube video
- We have integrated YouTube videos into our online offering, which are stored at https://www.YouTube.com and can be played directly from our website. These are all embedded in "enhanced privacy mode", which means that no data about you as a user is transferred to YouTube if you do not play the videos. Only when you play the videos will the data mentioned in paragraph 2 be transferred. We have no influence on this data transfer. The legal basis for the integration of YouTube videos is Art. 6 para. 1 p. 1 lit. f DS-GVO.
- By visiting the website, YouTube receives the information that you have called up the corresponding subpage of our website. In addition, the data mentioned in section 3, "Use of cookies" and "Visit to our website", of this declaration are transmitted. This is done regardless of whether YouTube provides a user account that you are logged in with or no user account exists. If you are logged in at Google, your data will be assigned directly to your account. If you do not want the assignment with your profile on YouTube, you have to log out before activating the button. YouTube stores your data as user profiles and uses them for the purpose of advertising, market research and/or demand-oriented design of its website. Such an evaluation is carried out in particular (even for users who are not logged in) for the purpose of providing needs-based advertising. You have the right to object to the creation of these user profiles, whereby you must contact YouTube to exercise this right.
- Information of the provider: YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, is responsible for data processing. For more information on the purpose and scope of data collection and processing by YouTube, please see the Privacy Policy. There you will also find further information on your rights and setting options to protect your privacy: https://www.google.de/intl/de/policies/privacy. Google also processes your personal data in the USA and has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.
Integration of jQuery
- We have included jQuery on this website to make the site as appealing as possible to you. This is a fast, small and feature-rich JavaScript library. When you call up our website, animations or other files are retrieved from the jQuery server and stored in the cache of your browser to display our website. By integrating jQuery we can make our website more interesting for you as a user. You can find further information on this at http://jquery.com/. The legal basis for the use of jQuery is Art. 6 para. 1 p. 1 lit. f DS-GVO.
- In order to connect to jQuery, the data listed above under "Visiting our website" is transferred to jQuery. In addition, cookies (see "Use of cookies" above) are stored on your computer to enable recognition when you visit our website again. jQuery collects and stores usage data according to its own specifications in pseudonymous profiles that are stored on jQuery's servers and are protected against intervention and modification by unauthorized third parties.
- You can prevent processing by deleting existing cookies and preventing cookies from being stored. The prevention of the storage of cookies is possible through the settings in your browser. If you deactivate the storage of cookies, we point out that you may not be able to use this website to its full extent.
- Information provided by the provider: jQuery is a project of various volunteers and part of the JS Foundation, Inc, Attn: Privacy Office, 1 Letterman Drive, San Francisco, CA 94129. For more information, please visit https://js.foundation/. For more information about the vendor's privacy policy, please visit https://js.foundation/about/governance/privacy-policy.
4. Presence in social networks
- We also operate online presences (fan pages) within social networks and platforms. We present ourselves as a company, can communicate with you as our customers, partners or interested parties and publish information and offers. Also, a possible analysis of the activity on our fan page can be done with statistical data provided to us by the providers of social networks and platforms (so-called Insights data). However, data processing only takes place as soon as you interact with our fan page. The legal basis for this is Art. 6 Para. 1 S. 1 lit. f DS-GVO, as the data processing is carried out on the basis of our legitimate interests in more effective information and communication with you. In the case of communication with us that is relevant to the contract, Art. 6 Para. 1 S. 1 lit. b DS-GVO constitutes the legal basis.
- When calling up and using our fan page, your personal data will be processed by the providers of the social networks and platforms themselves for analysis and advertising purposes. As the operator of the fan page we have no influence on this and we do not receive any information from the respective providers about the exact scope of data processing. The providers can thus create user profiles, for example, to place interest-based advertising. For this purpose cookies are usually stored on your devices. Data processing can also take place outside the European Union. The US providers of social networks and platforms are certified according to the Privacy Shield, whereby they undertake to comply with the data protection standards of the EU (https://www.privacyshield.gov/list). The respective provider of the social networks and platforms is primarily responsible for data processing via the fan page. You also have the option of asserting your rights as a data subject (see below under "Your rights") directly against the providers of the social networks and platforms.
- Further information on data processing and your rights can be found in the providers' data protection declarations:
- Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Irland;
Privacy Policy: https://www.facebook.com/about/privacy/;
Joint and Several Accountability Agreement: https://www.facebook.com/legal/terms/page_controller_addendum;
Opt-Out: http://www.youronlinechoices.com and through the settings in your personal Facebook profile, you also have the option to object to certain data processing.
Facebook Ireland Ltd. is also responsible for data processing through Instagram Inc. - Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA;
Privacy Policy: and opt-out: http://instagram.com/about/legal/privacy/. - Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland;
Privacy Policy: https://policies.google.com/privacy;
Opt-Out: https://adssettings.google.com/authenticated. - Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA;
Privacy Policy: https://twitter.com/de/privacy,
Opt-Out: https://twitter.com/personalization, - Pinterest Inc., 635 High Street, Palo Alto, CA, 94301, USA;
Privacy Policy: and opt-out: https://about.pinterest.com/de/privacy-policy. - LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Irland;
Privacy Policy: https://www.linkedin.com/legal/privacy-policy;
Opt-Out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out. - XING AG, Dammtorstraße 29-32, 20354 Hamburg, Deutschland;
Privacy Policy: and opt-out: https://privacy.xing.com/de/datenschutzerklaerung
5. Transfer to third countries
In some cases, your data will be transferred by external service providers to servers outside the EU (so-called third countries). In particular, these may be service providers in the areas of hosting, fulfillment of regulatory obligations, debt collection and marketing. We select these service providers carefully and contractually oblige them to comply with data protection regulations. If the service providers are located in the USA, it is ensured that the providers have submitted to the EU-US Privacy Shield Agreement and thus an adequate level of data protection can be guaranteed.
The following companies receive data in third countries outside the European Union:
- Google Inc., 1600 Amphitheater Parkway, Mountainview, California 94043, USA; https://www.google.de/intl/de/policies/privacy
- YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, USA;
https://www.google.de/intl/de/policies/privacy - Facebook Inc., 1601 S California Ave, Palo Alto, California 94304, USA;
https://www.facebook.com/policy.php; - Instagram LLC, 1601 Willow Rd, Menlo Park CA 94025, USA,
https://help.instagram.com/155833707900388
6. Your rights
You have the following rights with regard to the processing of personal data concerning you, which you can assert informally at any time against the contact person listed above in 1.
Right to information
Upon request, we will provide you with information about which of your personal data we have stored, for what purpose, for how long, from what source and on what legal basis, and whether we have disclosed this information to third parties.
Right to correction
If it turns out that the personal data we have received from you is incorrect or incomplete, we will correct or supplement it immediately upon request.
Right to deletion (right to be forgotten)
You have the right to have your personal data deleted without delay, unless there is a legal obligation to retain them.
Right to limitation of processing
You can request us to restrict the processing of your personal data.
Right to object to the processing
You can object to the processing of your personal data at any time. This applies in particular if the legal basis for the processing is Art. 6 para. 1 sentence 1 lit. f DS-GVO.
Right to data transferability
You have the right to receive the personal data we hold about you in a universally readable format.
Right of appeal to a supervisory authority
You also have the right to complain to the competent data protection supervisory authority about the processing of your personal data by us. The data protection authority of the federal state in which we have our registered office is responsible. You can find more information on this at https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.
We take the liberty of politely pointing out that the exercise of your rights may be subject to the existence of certain conditions in individual cases.
Guarantee of data security and data protection
In order to ensure the protection and security of your personal data, we implement a variety of technical and organizational security measures, the effectiveness of which we regularly review.