General privacy

General privacy policy
In the following section, we would like to inform you about the use of your data in accordance with Art. 13 of the General Data Protection Regulation (GDPR).
Please note that this general privacy policy does not constitute the privacy policy of our website, which can be found here: Privacy policy for the use of our website.
Responsibility
Responsibility for data collection and processing lies with the company which has contacted you or the company with which you maintain contact or have concluded a contract.
General processing principles
We collect and process personal data in accordance with Art. 6 of the General Data Protection Regulation (GDPR) exclusively on the following bases:

  1. the data subject has given consent to the processing of his or her personal data for one or more specific purposes;
    Note: You can revoke your previously given consent to the processing of personal data at any time. The revocation does not affect the lawfulness of the processing carried out under the consent given prior to the revocation.   
  2. processing is necessary in order to fulfill a contract to which the data subject is a party, or to carry out pre-contractual measures;
  3. processing is necessary for compliance with a legal obligation to which we as the controller are subject;
  4. processing is necessary in order to protect the vital interests of the data subject or of another natural person;
  5. processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in us as the controller;
    Note: You have the right to object to the above data processing. You can obtain more information under “Your data protection rights”.
  6. processing is necessary for the purposes of the legitimate interests pursued by us as the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the data subject is a child.
    Note: You have the right to object to the above data processing. You can obtain more information under “Your data protection rights”.

Purposes of processing
Below we have listed typical situations in which we may process personal data:
Communicating with clients and interested parties
Storing received business card data in our customer database
Preparing invoices and other accounting purposes
Processing within client projects (in which we also regularly conclude a contract on commissioned processing of data pursuant to Art. 28 GDPR)
Recording and evaluating orders
Dispatching newsletters
You will receive more detailed information—especially in cases that have not hitherto been mentioned—on a regular basis as part of the specific processing activity.

Voluntary information
Insofar as the provision of certain personal data is voluntary, we will indicate this accordingly when collecting the data. Failure to provide this voluntary data does not have any negative consequences. In some cases, however, the non-availability of such data may make subsequent communication more difficult or delay the completion of tasks.
Recipients of data
We will only transmit your data to third parties insofar as this is permissible under data protection law and in accordance with the above-mentioned principles.
We may also pass on your data to external service providers (e.g. IT service providers, companies that destroy or archive data, print service providers) who support us in data processing within the framework of order processing and who are strictly subject to our instructions.
As a rule, no data is processed outside the EU or the EEA. Should this occur in individual cases, we will notify you when collecting the data.
We will not sell or otherwise market your personal data to third parties.
Storage period:
We delete your data when no longer needed or if, for other reasons, the basis for lawful storage no longer exists and there are no legal retention periods to prevent deletion.
 
Your data protection rights
You can revoke your consent at any time with future effect.
You also have the right to information, correction, deletion and to limit the processing of your data.
If you are of the opinion that your data is being processed unlawfully, you can also complain to a data protection supervisory authority.
 
Questions about data protection
You also have the right to contact us at any time if you have any questions about data protection.
The easiest and fastest way to reach us is by e-mail to data-protection@zeb.de.
We are also happy to receive your message by mail. Please send letters to the following address: 
 
zeb.rolfes.schierenbeck.associates gmbh
Data protection
Hammer Str. 165
48153 Münster
Germany
We are happy to provide you with further information upon request.