Privacy policy
Thank you for visiting our website and for your interest in our services. The protection of your privacy is very important to us. We attach great importance to the protection of your personal data and your right to informational self-determination. We collect, process and use personal data exclusively in accordance with the General Data Protection Regulation (hereinafter also referred to as “GDPR”) and the applicable country-specific data protection regulations.
Below we inform you as the data subject and the public about the type, scope and purpose of the personal data we collect, use and process. As data subjects, you will also be informed of your rights by means of this data protection notice. If you do not agree with these provisions, please do not access this website or use it in any other way. If you have any questions or other concerns, please do not hesitate to contact us. To do so, you can use the contact mentioned in section II.
I. Person responsible
The controller within the meaning of the General Data Protection Regulation and other applicable data protection regulations is the:
Erich NETZSCH B.V. & Co. Holding KG
Gebrüder-Netzsch-Strasse 19
95100 Selb, Germany
Phone: +49 9287 75-0
Fax: +49 9287 75208
E-mail: info@netzsch.com
Website: https://www.netzsch.com
II. Data Protection Officer
The data protection officer of the controller is
Dr. Georg Schröder, LL.M.
External data protection officer
legal data Schröder Rechtsanwaltsgesellschaft mbH
Prannerstr. 1
80333 Munich
Phone: +49 89 954 597 520
Fax: +49 89 954 597 522
E-mail: datenschutz@netzsch.com | georg.schroeder@legaldata.law
Data subjects can contact this data protection officer at any time with any questions and to assert rights and other suggestions regarding data protection.
III. Processing of personal data
1. general information about visiting our website
If you visit our website for information purposes only, it is generally not necessary for you to provide personal data. In this case, we only collect and use the data that your Internet browser automatically transmits to us, such as your browser type (including version) and browser settings, the operating system used by the accessing system, the date and time of accessing one of our websites, the name of your Internet service provider, your IP address and the website from which you are visiting us. When collecting and processing this data, we do not draw any conclusions about the data subject. The data is stored separately from all other personal data provided by a data subject. The data is collected and processed exclusively to enable you to use the websites you have accessed, for statistical purposes and to improve our website.
This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.
If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
2. hosting
This website is hosted by an external service provider (hoster). The personal data collected on this website is stored on the hoster’s servers. This may include IP addresses, contact requests, meta and communication data, contract data, contact details, names, website accesses and other data generated via a website.
The hoster is used for the purpose of fulfilling the contract with our potential and existing customers (Art. 6 para. 1 lit. b GDPR) and in the interest of a secure, fast and efficient provision of our online offer by a professional provider (Art. 6 para. 1 lit. f GDPR).
Our hoster will only process your data to the extent necessary to fulfill its performance obligations and follow our instructions with regard to this data.
In order to guarantee data protection-compliant processing, we have concluded an order processing contract with our hoster.
3. cookies
We use so-called cookies on various pages to make visiting our website attractive and to enable the use of certain functions. These are text files that are stored on your end device. Cookies help us to determine the frequency of use and the number of users of our website, as well as to make our services as convenient and efficient as possible for you.
On the one hand, we use so-called “session cookies”, which are only stored temporarily for the duration of your use of one of our websites. On the other hand, we use “permanent cookies” (including “flash cookies”) to store information about computers that repeatedly access our website. This enables us to offer you optimal user guidance and to “recognize” you and present you with a website that is as varied as possible and new content when you use it repeatedly. You can deactivate the storage of cookies in your browser under Tools/Internet Options, restrict them to certain websites or set your browser to notify you as soon as a cookie is sent. You also have the option of removing existing cookies with your browser. You can find more information on these functions in the documentation or in the help file of your browser.
Please note that if you exclude the use of cookies, you must expect a limited display of our web pages and limited user guidance.
Cookie consent with Borlabs Cookie
Our website uses Borlabs Cookie’s cookie consent technology to obtain your consent to the storage of certain cookies in your browser and to document this in accordance with data protection regulations. The provider of this technology is Borlabs GmbH, Hamburger Str. 11, 22083 Hamburg (hereinafter referred to as Borlabs).
When you enter our website, a Borlabs cookie is stored in your browser in which the consents you have given or the revocation of these consents are stored. This data is not passed on to the provider of Borlabs Cookie.
The data collected will be stored until you ask us to delete it or delete the Borlabs cookie yourself or until the purpose for storing the data no longer applies. Mandatory statutory retention periods remain unaffected. Details on the data processing of Borlabs Cookie can be found at https://de.borlabs.io/kb/welche-daten-speichert-borlabs-cookie/.
Borlabs cookie consent technology is used to obtain the legally required consent for the use of cookies. The legal basis for this is Art. 6 para. 1 p. 1 lit. c GDPR.
Google Analytics
From
4. other tools
Akamai
We use web analysis tools from Akamai on some of our websites. Data is collected and stored for marketing, market research and optimization purposes. The legal basis for the processing of the data is Art. 6 para. 1 lit. a GDPR.
The third-party provider stores this data under a pseudonym as a user profile. For this purpose, so-called tracking scripts or cookies are used to collect data. The data collected with these technologies will not be used to personally identify visitors to this website without the separately granted consent of the person concerned and will not be merged with personal data about the bearer of the pseudonym.
You have the right to object to the creation of these user profiles. If you do not wish to participate in this procedure, you can object to the collection and storage of data at any time with effect for the future. Please contact the third-party provider directly. Alternatively, you can set your browser to prevent the setting of cookies.
Further information on data protection at Akamai:
https://www.akamai.com/legal/privacy-statement
Google Tag Manager
We use the Google Tag Manager. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
Google Tag Manager is a tool that we can use to integrate tracking or statistics tools and other technologies on our website. The Google Tag Manager itself does not create any user profiles, does not store any cookies and does not carry out any independent analyses. It is only used to manage and display the tools integrated via it. However, Google Tag Manager records your IP address, which may also be transmitted to Google’s parent company in the United States.
The use of Google Tag Manager is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in the fast and uncomplicated integration and management of various tools on its website. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG, insofar as the consent includes the storage of cookies or access to information in the user’s end device (e.g. device fingerprinting) within the meaning of the TDDDG. Consent can be revoked at any time.
Google Tag Manager
From
Google Analytics
This website uses functions of the web analysis service Google Analytics. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.
Google Analytics enables the website operator to analyze the behavior of website visitors. The website operator receives various usage data, such as page views, length of visit, operating systems used and origin of the user. This data is summarized in a user ID and assigned to the respective end device of the website visitor.
We can also use Google Analytics to record your mouse and scroll movements and clicks, among other things. Google Analytics also uses various modeling approaches to supplement the collected data records and uses machine learning technologies for data analysis.
Google Analytics uses technologies that enable the recognition of the user for the purpose of analyzing user behavior (e.g. cookies or device fingerprinting). The information collected by Google about the use of this website is generally transmitted to a Google server in the USA and stored there.
The use of this service is based on your consent in accordance with Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG. Consent can be revoked at any time.
Data transfer to the USA is based on the standard contractual clauses of the EU Commission. You can find details here: https://privacy.google.com/businesses/controllerterms/mccs/.
Change cookie settings
Browser plugin
You can prevent the collection and processing of your data by Google by downloading and installing the browser plug-in available at the following link: https://tools.google.com/dlpage/gaoptout?hl=de.
You can find more information on how Google Analytics handles user data in Google’s privacy policy: https://support.google.com/analytics/answer/6004245?hl=de.
Google signals
We use Google signals. When you visit our website, Google Analytics records your location, search history, YouTube history and demographic data (visitor data), among other things. This data can be used for personalized advertising with the help of Google Signal. If you have a Google account, the visitor data from Google Signal will be linked to your Google account and used for personalized advertising messages. The data is also used to compile anonymous statistics on the user behavior of our users.
Order processing
We have concluded an order processing contract with Google and fully implement the strict requirements of the German data protection authorities when using Google Analytics.
Google Ads
The website operator uses Google Ads. Google Ads is an online advertising program of Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.
Google Ads enables us to display advertisements in the Google search engine or on third-party websites when the user enters certain search terms in Google (keyword targeting). Furthermore, targeted advertisements can be displayed based on the user data available at Google (e.g. location data and interests) (target group targeting). As website operators, we can evaluate this data quantitatively by analyzing, for example, which search terms led to the display of our advertisements and how many advertisements led to corresponding clicks. The use of Google Ads is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in marketing its products and services as effectively as possible.
Google Remarketing
This website uses the functions of Google Analytics Remarketing. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.
Google Remarketing analyzes your user behavior on our website (e.g. clicks on certain products) in order to classify you into certain advertising target groups and then display suitable advertising messages to you when you visit other online offers (remarketing or retargeting).
Furthermore, the advertising target groups created with Google Remarketing can be linked to Google’s cross-device functions. In this way, interest-based, personalized advertising messages that have been adapted to you depending on your previous usage and surfing behavior on one end device (e.g. cell phone) can also be displayed on another of your end devices (e.g. tablet or PC). If you have a Google account, you can object to personalized advertising by clicking on the following link: https://www.google.com/settings/ads/onweb/.
The use of Google Remarketing is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in marketing its products as effectively as possible. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR; consent can be revoked at any time. Further information and the data protection provisions can be found in Google’s privacy policy at:
https://policies.google.com/technologies/ads?hl=de.
Target group formation with customer matching
Among other things, we use Google Remarketing customer matching to form target groups. In doing so, we transfer certain customer data (e.g. e-mail addresses) from our customer lists to Google. If the customers in question are Google users and are logged into their Google account, they will be shown suitable advertising messages within the Google network (e.g. on YouTube, Gmail or in the search engine).
Facebook Pixel
This website uses Facebook’s visitor action pixel to measure conversions. The provider of this service is Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. However, according to Facebook, the data collected is also transferred to the USA and other third countries. This allows the behavior of site visitors to be tracked after they have been redirected to the provider’s website by clicking on a Facebook ad. This allows the effectiveness of Facebook ads to be evaluated for statistical and market research purposes and future advertising measures to be optimized.
The data collected is anonymous for us as the operator of this website; we cannot draw any conclusions about the identity of the user. However, the data is stored and processed by Facebook so that a connection to the respective user profile is possible and Facebook can use the data for its own advertising purposes in accordance with the Facebook Data Usage Policy. This enables Facebook to place advertisements on Facebook pages and outside of Facebook. This use of the data cannot be influenced by us as the website operator.
The use of Facebook pixels is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in effective advertising measures, including social media. If a corresponding consent has been requested (e.g. consent to the storage of cookies), the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR; consent can be revoked at any time.
You can find further information on protecting your privacy in Facebook’s privacy policy: https://de-de.facebook.com/about/privacy/.
You can also activate the remarketing function “Custom Audiences” in the ad settings section under
Deactivate https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen.
You must be logged in to Facebook to do this.
If you do not have a Facebook account, you can deactivate usage-based advertising from Facebook on the website of the European Interactive Digital Advertising Alliance:
http://www.youronlinechoices.com/de/praferenzmanagement/.
Monotype
We use external fonts from Monotype on this website. Monotype is a service of Monotype Imaging Holdings Inc, 600 Unicorn Park Drive, Woburn, Massachusetts 01801, USA.
These web fonts are integrated via a server call. This may also be a Monotype server in the USA. The server is informed which of our websites you have visited. The IP address of your end device is also processed by Monotype.
The purpose of using Monotype is the uniform representation of fonts. The legal basis is our legitimate interests pursuant to Art. 6 para. 1 lit. f) GDPR.
We do not process the data collected through the use of Monotype.
Further information on data protection at Monotype:
https://www.monotype.com/de/rechtshinweise/datenschutzrichtlinie.
5. plug-ins and social media tools
YouTube with enhanced data protection
This website embeds videos from YouTube. The operator of the pages is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.
We use YouTube in extended data protection mode. According to YouTube, this mode means that YouTube does not store any information about visitors to this website before they watch the video. However, the transfer of data to YouTube partners is not necessarily excluded by the extended data protection mode. YouTube establishes a connection to the Google DoubleClick network, regardless of whether you are watching a video. As soon as you start a YouTube video on this website, a connection to the YouTube servers is established. This tells the YouTube server which of our pages you have visited. If you are logged into your YouTube account, you enable YouTube to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your YouTube account.
Furthermore, YouTube can store various cookies on your end device after starting a video or use comparable recognition technologies (e.g. device fingerprinting). In this way, YouTube can obtain information about visitors to this website. This information is used, among other things, to record video statistics, improve user-friendliness and prevent fraud attempts. After the start of a YouTube video, further data processing operations may be triggered over which we have no influence. The use of YouTube is in the interest of an appealing presentation of our online offers. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR represent. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR; consent can be revoked at any time.
You can find more information about data protection at YouTube in their privacy policy at: https://policies.google.com/privacy?hl=de.
Vimeo without tracking (Do-Not-Track)
This website uses plug-ins from the video portal Vimeo. The provider is Vimeo Inc, 555 West 18th Street, New York, New York 10011, USA.
When you visit one of our pages equipped with Vimeo videos, a connection to the Vimeo servers is established. This tells the Vimeo server which of our pages you have visited. Vimeo also obtains your IP address. However, we have set Vimeo so that Vimeo will not track your user activities and will not set any cookies.
The use of Vimeo is in the interest of an appealing presentation of our online offers. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR represent. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR; consent can be revoked at any time. Further information on the handling of user data can be found in Vimeo’s privacy policy at: https://vimeo.com/privacy.
Google Web Fonts
This site uses so-called web fonts provided by Google for the uniform display of fonts. The Google Fonts are installed locally. A connection to Google servers does not take place. Further information on Google Web Fonts can be found at
https://developers.google.com/fonts/faq and in Google’s privacy policy:
https://policies.google.com/privacy?hl=de.
Google Maps
This site uses the Google Maps map service via an API. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.
To use the functions of Google Maps, it is necessary to save your IP address. This information is usually transferred to a Google server in the USA and stored there. The provider of this site has no influence on this data transmission.
The use of Google Maps is in the interest of an appealing presentation of our online offers and to make it easy to find the places we indicate on the website. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR represent. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR; consent can be revoked at any time. You can find more information on the handling of user data in Google’s privacy policy:
https://policies.google.com/privacy?hl=de.
ManageWP
We manage this website with the help of the ManageWP tool. The provider is GoDaddy.com WP Europe, Trg republike 5, 11000 Belgrade, Serbia (hereinafter referred to as ManageWP).
With ManageWP, we can monitor the security and performance of our website and create automatic backups, among other things. ManageWP therefore has access to all website content, including our databases. ManageWP is hosted on the provider’s servers.
The use of ManageWP is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in the most effective and secure operation of its website(s). If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG, insofar as the consent includes the storage of cookies or access to information in the user’s end device (e.g. device fingerprinting) within the meaning of the TDDDG. Consent can be revoked at any time.
Order processing
We have concluded an order processing contract (AVV) with the above-mentioned provider. This is a contract prescribed by data protection law, which ensures that the data controller processes the personal data of our website visitors only in accordance with our instructions and in compliance with the GDPR.
6. use of our other services offered
Further data is only collected and processed when you visit this website if you voluntarily provide us with this data when using services offered separately on our website. We would like to point out that there is generally no legal or contractual obligation to provide your personal data in this context. However, if you do not wish to provide your personal data, the use of our services may be restricted or excluded.
Contact via our website
Due to legal regulations, our website contains information that enables quick electronic contact to our company and direct communication with us, which also includes a general address of the so-called electronic mail (e-mail address). If a data subject contacts the controller by email or via a contact form, the personal data transmitted by the data subject is automatically stored. Such personal data transmitted on a voluntary basis by a data subject to the controller are stored for the purpose of processing or contacting the data subject.
Request by phone or fax
If you contact us by telephone or fax, we will store and process your inquiry, including all personal data (name, inquiry), for the purpose of processing your request. We do not pass on this data without your consent.
This data is processed on the basis of Art. 6 para. 1 lit. b GDPR, provided that your request is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of the inquiries addressed to us (Art. 6 para. 1 lit. f GDPR) or on your consent (Art. 6 para. 1 lit. a GDPR) if this has been requested.
The data you send to us via inquiries will remain with us until you ask us to delete it, revoke your consent to storage or the purpose for data storage no longer applies (e.g. after your request has been processed). Mandatory statutory provisions – in particular statutory retention periods – remain unaffected.
Applications via SmartRecruiters
If you use the link to our online application tool SmartRecruiters, you will find all the necessary data protection information in the SmartRecruiters data protection information.
IV. Processing purposes and legal basis as well as legitimate interest
When using personalized services, we process the personal data provided by you for the purpose of providing the service requested by you.
We use the personal data collected in connection with contact via our contact form exclusively for the purposes of processing or contacting the person concerned. The legal basis for this is the legitimate interest (see Art. 6 para. 1 lit. f GDPR).
V. Storage period and routine deletion
The legislator has issued a wide range of retention obligations and deadlines. The duration of the storage of personal data is also based on this. After these periods have expired, the corresponding data is routinely deleted or its processing is restricted. If data is not affected by this, it will be deleted as soon as the respective purpose no longer applies.
Subject to further processing purposes (e.g. inquiry via the contact form), we will only store the personal data that you provide to us in the course of contacting us until your inquiry has been dealt with or at the latest in accordance with the internal deletion period.
VI. Rights of data subjects
According to the General Data Protection Regulation, you as the data subject have various rights in connection with the collection and processing of your personal data, which we would like to explain below.
The data subjects can assert these rights at any time. To assert these rights and if you have any questions in this regard, please get in touch with our contact person (see Section II). They will be happy to answer your questions and, in individual cases, take the necessary measures to implement the rights asserted by the data subject without delay.
Right to confirmation and information
Each data subject shall have the right to obtain from the controller confirmation as to whether or not personal data concerning him or her are being processed. If this is the case, the data subject also has the right to receive information free of charge about the personal data stored about him/her and a copy of this information.
Right to rectification
Every data subject has the right to demand the immediate rectification of inaccurate personal data concerning him or her. Furthermore, taking into account the purposes of the processing, you have the right to request the completion of incomplete personal data, including by means of a supplementary declaration.
Right to erasure
Each data subject shall have the right to obtain from the controller the erasure of personal data concerning him or her without undue delay where one of the following grounds applies, as long as the processing is not necessary
- The personal data were collected or otherwise processed for purposes for which they are no longer necessary.
- The data subject objects to the processing and there are no overriding legitimate grounds for the processing.
- The personal data was processed unlawfully.
- The controller is otherwise legally obliged to erase the data.
- The personal data in question are those collected from children in the context of information society services.
If the personal data have been made public by us as the controller and we are obliged to erase them, we shall take reasonable steps, taking into account the available technology and the cost of implementation, to inform other controllers which are processing the personal data of the data subject’s request for erasure. We also inform these other controllers that the data subject has requested the deletion of all links to this personal data or copies or replications of this data, insofar as the processing is not necessary.
Right to restriction/blocking of processing
Each data subject shall have the right to obtain from the controller restriction of processing where one of the following applies:
- The accuracy of the personal data is contested by the data subject, for a period enabling the controller to verify the accuracy of the personal data.
- The processing is unlawful and the data subject opposes the erasure of the personal data and requests the restriction of their use instead.
- The controller no longer needs the personal data for the purposes of the processing, but they are required by the data subject for the establishment, exercise or defense of legal claims.
- The data subject has objected to the processing and it is not yet clear whether the legitimate grounds of the controller override those of the data subject.
Right to data portability
Each data subject shall have the right to receive the personal data concerning him or her, which he or she has provided to a controller, in a structured, commonly used and machine-readable format. You also have the right to transmit this data to another controller without hindrance from the controller to which the personal data has been provided, where the processing is based on consent or on a contract and the processing is carried out by automated means.
In addition, the data subject has the right to have the personal data transmitted directly from one controller to another, where technically feasible and provided that this does not adversely affect the rights and freedoms of others.
Right to object
Every data subject has the right to object, on grounds relating to his or her particular situation, at any time to processing of personal data concerning him or her, where such processing is for the purposes of the legitimate interests pursued by the controller or by a third party.
In the event of an objection, we will no longer process the personal data unless we can demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject or for the establishment, exercise or defense of legal claims.
Where personal data are processed for direct marketing purposes, the data subject shall have the right to object at any time to processing of personal data concerning him or her for such marketing. If the data subject objects to processing for direct marketing purposes, the personal data will no longer be processed for these purposes.
Right of appeal
Irrespective of the rights mentioned above and irrespective of other legal remedies, every data subject has the right to lodge a complaint with a supervisory authority if he or she considers that the processing of personal data relating to him or her infringes data protection regulations.
VII. Data security
We would like to point out that data transmission via the Internet is essentially unsecured. It cannot be ruled out that transmitted data may be accessed and possibly even falsified by unauthorized persons. For secure communication with us, we offer encrypted communication via the SSL protocol as standard, which we use to transfer your personal data. We also use up-to-date technical and organizational measures to protect our website and other systems against loss, destruction, access, modification or dissemination of your data by unauthorized persons. These are adapted according to the state of the art.
VIII. Recipients or category of recipients
Insofar as we transfer personal data to third parties, this is done in accordance with the provisions of data protection law and this privacy policy. We transfer the personal data to companies within the NETZSCH Group for the processing purposes mentioned above:
- NETZSCH-Gerätebau GmbH
- NETZSCH-Feinmahltechnik GmbH
- NETZSCH Pumps & Systems GmbH
- NEDGEX GmbH
- NETZSCH Lohnmahltechnik GmbH
- NETZSCH TAURUS Instruments GmbH
- NETZSCH Dry Grinding Technology GmbH
- NETZSCH Vakumix GmbH
- NETZSCH Process Intelligence GmbH
- LabV Intelligent Solutions GmbH
Service providers and vicarious agents employed by us may also receive data for the aforementioned processing purpose if, in particular, they comply with the duty of confidentiality. These are companies for IT services, logistics and printing services.
IX. Transfer to a third country or an international organization
When transferring data to external bodies in third countries, i.e. outside the European Union (EU) or the contracting states of the Agreement on the European Economic Area (EEA), we ensure that these bodies treat your personal data with the same care as within the EU or the EEA. We only transfer personal data to third countries where the EU Commission has confirmed an adequate level of protection or where we can ensure the careful handling of personal data through contractual agreements or other suitable guarantees.
X. Data protection information for applicants
Compliance with data protection regulations is a high priority for our company. We hereby inform you about the processing of your personal data and the rights to which you are entitled under data protection law. We also support fair and transparent processing of your personal data in accordance with Article 13 (Duty to provide information) of the General Data Protection Regulation (GDPR).
What personal data do we collect and where does it come from?
We process the following personal data as part of the application process:
- Your master data (such as first name, surname, name affixes, date of birth, city, country and, if applicable, your name).
- Name at birth and nationality
- Work permit / residence permit, if applicable
- Contact details (e.g. private address and (mobile) telephone number, e-mail address), if provided
- Qualifications, professional experience and professional development as well as further training
- Bank details (if travel expenses are reimbursed)
- Special types of personal data:
- Religious affiliation, if relevant for tax purposes
- Health data or health suitability, if relevant for the advertised position
- Severe disability / Equality
If you are under the age of majority at the time of recruitment, we may ask you to submit an initial medical examination certificate. We are legally obliged to do so in accordance with §32 of the German Youth Protection Act.
Voluntary information:
As part of the application process, we may also ask you whether you have a severe disability. This question is asked in order to protect your rights under the Social Security Act IX. You only have to answer this question after 6 months of employment. Before that, the answer is voluntary.
If we ask for photos as part of the application process, this is done on the basis of a separate consent, the submission of which is voluntary and you can informally revoke at any time to the responsible body.
Your personal data is generally collected directly from you as part of the recruitment process, in particular from the information provided in the case of an application via our online applicant portal, the application documents and the job interview.
In addition, we do not process any personal data that could be legitimately obtained from publicly accessible sources (e.g. professional networks).
For what purposes and on what legal basis is data processed?
We process your personal data in compliance with the provisions of the EU General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG) as well as all other relevant laws.
The primary purpose of data processing is to establish the employment relationship. The primary legal basis for this is Art. 88 (data processing in the employment relationship) para. 1 DS-GVO i. V. m.
§ Section 26 para. 1 BDSG. Your data will only be processed to fill the specific position for which you have applied.
In addition, the processing of health data for the assessment of your ability to work or suitability for work in accordance with. Art. 9 para. 2 h) (Processing of special categories of personal data) GDPR in conjunction with § 22 para. 1 b) BDSG may be required.
If you would like to be included in our applicant pool in the event of a rejection, we require a declaration of consent from you.
If your application is to be considered for other open positions in the company/group, we require a declaration of consent from you.
This consent is voluntary and you can revoke it at any time with effect for the future. Your data will then be deleted or no longer used after the expiry of statutory retention obligations. If you revoke your consent, the processing of your data up to the time of revocation remains lawful.
In addition, the European anti-terrorism regulations 2580/2001 and 881/2002 require us to check your data against the so-called “EU terror lists” to ensure that no funds or other economic resources are made available for terrorist purposes.
How long will your data be stored?
If you are hired, we will transfer your application documents to your personnel file. After termination of the employment relationship, the personal data that we are legally obliged to retain will continue to be stored. This regularly results from legal obligations to provide evidence and retain records, which are regulated in the German Commercial Code and the German Fiscal Code, among others. The storage periods are then up to ten years. In addition, personal data may be retained for the period during which claims can be asserted against us (statutory limitation period of three or up to thirty years).
In the event of a rejection, your application documents will be deleted no later than six months after completion of the application process, unless you have given us your consent to store them for a longer period (applicant pool). This also applies to the consideration of your application for other open positions in the company/group.
Who receives your data?
Within our company, only those persons and departments (e.g. specialist department, works council, representative body for severely disabled employees, etc.) receive your personal data who are involved in the decision regarding your recruitment.
Applications with a specific job reference (direct applications)
If you have applied for a specific position, your data will be made available to the department posting the vacancy and to the responsible HR department.
Applications without a specific job reference (unsolicited applications)
If you have registered with NETZSCH without a specific job reference, your data will be made accessible to both central HR departments and decentralized HR departments of the group of companies, provided that vacancies there match your applicant profile.
In addition, we use various service providers to fulfill our contractual and legal obligations. Extensive contractual arrangements have also been made with these service providers regarding data protection. In terms of data protection law, these also apply in full to downstream service providers.
Data processing for application procedures has been partially outsourced to external service providers, SmartRecruiters Inc, 166 Geary St, San Francisco, CA 94108, USA (applicant data portal). A contract for order processing has been concluded with each of these companies.
Applicant portal SmartRecruiters
The technology for our applicant portal is called “SmartRecruiters” and is provided by SmartRecruiters Inc, 166 Geary St, San Francisco, CA 94108, USA.
You can set up a personal account there (“applicant portal”) to manage job vacancies and have an overview of your applications to us. To use the applicant portal at https://my.smartrecruiters.com/, you can register via the e-mail you received after applying or to obtain your consent. You will need your e-mail address and a password to register. Your profile will be made available and visible to us. You may receive Job notifications from us. SmartRecruiters uses third-party providers for statistical analysis, technical support and data hosting.
We use Smartrecruiters with the AI component “SmartAssistant”. SmartAssistant does not replace human decision-making for us. The function compares the applicant’s CV/profile with the job advertisement and provides a match rate that calculates how many of the required skills and qualifications the applicant meets, rather than evaluating the applicant per se.
When calculating the match score, SmartRecruiters only uses education, skills and professional background. Other applicant characteristics are not taken into account when calculating the score.
Further information on data protection at SmartRecruiters: https://www.smartrecruiters.com/legal/candidate-privacy-policy/
Talent Pool
We use the SmartRecruiters Community as a platform for our talent pool to inform you about suitable career opportunities with us. Your personal data, including your CV, contact details and other relevant information, is collected, stored and processed by us solely for this purpose. The legal basis is your consent (Art. 6 para. 1 lit. a GDPR). When registering for our talent pool, you create a personal account with SmartRecruiters. Please note that this data protection information does not apply to data processing by SmartRecruiters in connection with this personal account. You can change, supplement or delete your data at any time.
Further information on data protection at SmartRecruiters: https://www.smartrecruiters.com/legal/candidate-privacy-policy/
What rights can you assert as a data subject?
You have the rights under Art. 15 – 22 (Rights of the data subject) GDPR:
- Right to information about the data we have stored about you (Art. 15 GDPR)
- Right to rectification of inaccurate data (Art. 16 GDPR)
- Right to erasure of data if there is no legal basis for further storage (Art. 17 GDPR)
- Right to restrict the processing of data to specific purposes (Art. 18 GDPR)
- Right to data portability (Art. 20 GDPR)
- Right to object to the processing of your data (Art. 21)
- Right to data portability (Art. 20 GDPR)
- Right to object to the processing of your data (Art. 21)
You can contact the controller or the data protection officer in this regard.
Where can you complain?
You have the option of lodging a complaint at any time with the responsible data protection officer of the company or with a data protection supervisory authority of your choice. You can access the responsible data protection supervisory authority via the following link:
https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html
The complaint can be made informally electronically or by post with the subject “Complaint” to the above-mentioned offices.
Will your data be transferred to a third country or an international organization?
When transferring data to external bodies in third countries, i.e. outside the European Union (EU) or the contracting states of the Agreement on the European Economic Area (EEA), we ensure that these bodies treat your personal data with the same care as within the EU or the EEA. We only transfer personal data to third countries where the EU Commission has confirmed an adequate level of protection or where we can ensure the careful handling of personal data through contractual agreements or other suitable guarantees.
Are you obliged to provide your data?
In order to be able to consider your application, we require the personal data from you that is necessary for the decision on the establishment of the employment relationship. False information can also have consequences under labor law.
To what extent do automated individual case decisions or profiling measures take place?
We do not use purely automated processing to reach a decision.
Who is responsible for data processing and who is the data protection officer?
The person responsible is:
NETZSCH Business Services GmbH
Gebrüder-Netzsch-Strasse 19
95100 Selb
The data protection officer of the controller is
Dr. Georg Schröder, LL.M., Lawyer/Data Protection Officer
legal data Schröder Rechtsanwaltsgesellschaft mbH
Prannerstrasse 1
80333 Munich, Germany
Tel. +49 89 954 597 520
E-mail: datenschutz@NETZSCH.com | Georg.Schroeder@legaldata.law
Enforcement of and compliance with data protection declarations
NETZSCH undertakes to comply with the above data protection points as described. If you have any questions or suggestions regarding data protection in our applicant management system, please contact:
Kristin.Hoerdler@netzsch.com