Data Protection Policy
Obligation to provide information acc. to Art. 13 GDPR
We, Stucke Elektronik GmbH, are pleased about your interest in our web presence and wish to make your stay on our website a pleasant one. The protection of your privacy is very important for us. Hereafter we will inform you about the handling of your personal data and corresponding rights.
1. Type and scope of data processing
You can visit our website without giving us your personal data. We only record your contact details in case you fill in the contact form. In addition, we take record of your IP address when you visit our website. The IP address can be personal data, since under certain conditions it is possible to find out the identity of the owner of the internet access used. The IP address is evaluated by us in the event of attacks on our internet infrastructure or significant misuse of our website. We have a legitimate interest in this in terms of Art. 6 Para. 1 f) GDPR. This results from the need to ward off an attack on the internet infrastructure, to determine the origin of the attack and to take criminal and civil legal action against the person responsible, as well as to effectively prevent attacks and to operate the internet presence without problems. In case of preclusion of an attack the IP address will be deleted after 7 days.
2. Data processing to process your requests
We offer the option of contacting us by E-Mail or by using the forms on our website. We only collect the personal data you provided to us voluntarily when contacting us. In case of using one of the given contact forms, those are
- your name,
- your E-Mail address,
- your phone no.,
- subject and content of the message sent to us.
We use this data exclusively to process and answer your request, i.e. in particular to contact you. When contacting us via the contact form on our homepage, we always obtain your consent that we may use the data you have provided to answer your inquiry and forward it to the responsible contact person. Your data is processed on the basis of your explicit consent in accordance with Art. 6 Para. 1a) GDPR. If contact is made to fulfill or prepare a contract, the legal basis is Art. 6 Para. 1b) GDPR, unless special categories of personal data are affected. Your data will be deleted, taking into account any existing legal retention periods, as soon as your request has been concluded.
3. SSL or TLS encryption
For security reasons and to protect the transmission of confidential content such as orders or inquiries you send to us as site operator, this site uses an SSL or TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.
If the SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
4. Server log files
The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:
– browser type and browser version
– operating system used
– referrer URL
– host name of the accessing computer
– time of server request
– IP address
This data is not merged with other data sources.
The basis for data processing is Art. 6 Para. 1 lit. f GDPR that allows the processing of data to fulfill a contract or pre-contractual measures.
6. Google Maps
Our website uses the Google Maps map service via an API on the contact page. The provider is Google Inc., 1600 Amphitheatre Parkway Mountain View, CA 94043, USA. In order for you to use the functionalities of Google Maps, it is necessary to save your IP address. This information is usually transmitted to a Google server in the United States and stored there. We have no influence on this transfer.
You can find more information on the handling of user data in Google’s data protection declaration: https://www.google.de/intl/de/policies/privacy/.
We use Google Maps to show you the location of our facility on an up-to-date map.
7. Use of Google Analytics (with anonymization function)
The person responsible for processing has integrated the Google Analytics component (with anonymization function) on this website. Google Analytics is a web analysis service. Web analysis is the collection and analysis of data about the behaviour of website visitors. A web analysis service collects for example data about which website a person came from (so-called referrer), which sub-pages were visited or how often and for how long a sub-page was accessed. Web analytics are mainly used to optimize a website and to carry out a cost-benefit analysis of internet advertising.
The operator of the Google Analytics component is Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.
For web analysis through Google Analytics the person responsible uses the application „_gat. _anonymizeIp“. Using this application, the IP address of the internet connection of the person concerned is shortened by Google and made anonymous when accessing our website from a member state of the European Union or from contracting states of the Agreement on the European Economic Area.
The purpose of the Google Analytics component is to analyse traffic on our website. Google uses the collected data and information amongst other things to evaluate the use of our website and to provide online reports to show the activities on our website and to provide us with other services related to the use of our website.
Google Analytics places a cookie on the information technology system of the person concerned. The definition of cookies is explained above. By setting the cookie, Google is able to analyze the use of our website. Each time one of the individual pages of this website – which is operated by the person responsible for processing and on which a Google Analytics component has been integrated – is called up, the internet browser on the information technology system of the person concerned automatically transmits data through the Google Analytics component for the purpose of online advertising and the commission statement to Google. As part of this technical process, Google gains knowledge of personal data, such as the IP address of the person concerned, which Google uses, among other things, to trace the origin of visitors and clicks.
Personal information such as the access time, the location from which access was made and the frequency of visits to our website by the person concerned is stored in the cookie. Each time you visit our website, this personal data, including the IP address of the internet access used by the person concerned, is transmitted to Google in the United States. This personal data is stored by Google in the United States. Google may pass this personal data collected through the technical process on to third parties.
The person concerned can prevent the setting of cookies by our website – as already described above – at any time by means of corresponding setting in the internet browser used and thus permanently object to the setting of cookies. Such a setting of the internet browser used would also prevent Google Analytics from setting a cookie on the information technology system of the person concerned. In addition, cookies already used by Google Analytics can be deleted at any time via a web browser or other software programs.
Further information Google’s applicable data protection regulations can be found under https://www.google.com/intl/de/policies/privacy/ and under http://www.google.com/analytics/terms/us. Google Analytics is explained in more detail under the following link: https://www.google.com/analytics/.
We use “Google reCAPTCHA” (hereinafter “reCAPTCHA”) on our websites. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). The purpose of reCAPTCHA is to check whether data is entered on our website (e.g. in a contact form) by a human or by an automated program. To do this, reCAPTCHA analyzes the behaviour of the website visitor based on various characteristics. This analysis starts automatically as soon as the website visitor enters the website. For the analysis, reCAPTCHA evaluates various information (e.g. IP address, how long the website visitor remains on the website or mouse movements made by the user). The data collected during the analysis is forwarded to Google.
The reCAPTCHA analysis runs in the background. Website visitors are not informed that an analysis takes place.
Data processing takes place on the basis of Art. 6 Para. 1 lit. f GDPR. The website operator has a legitimate interest in protecting his web offerings from abusive automated spying and from SPAM.
8. Social Media
The person responsible for processing has integrated components of Facebook on this website. Facebook is a social network.
A social network is a social meeting place operated on the internet, an online community that usually enables users to communicate with one another and to interact in virtual space. A social network can serve as a platform for exchanging opinions and experiences, or it allows the internet community to provide personal or company-related information. Among other things, Facebook enables users of the social network to create private profiles, upload photos and network via „friends“ requests.
Facebook’s operating company is Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA. If a person concerned lives outside the United States or Canada, the responsible for processing personal data is Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
Each time one of the individual pages of this website, which is operated by the person responsible for processing and on which a Facebook component (Facebook plug-in) has been integrated, is called up, the internet browser on the information technology system of the person concerned is automatically activated by the respective Facebook component to download a display of the corresponding Facebook component from Facebook. A general overview of all Facebook plug-ins can be found under https://developers.facebook.com/docs/plugins/?locale=de_DE. As part of this technical process, Facebook is informed which specific sub-page of our website is visited by the person concerned.
If the person concerned is logged on to Facebook at the same time, Facebook recognizes which specific sub-page of our website the person concerned is visiting – each time the person concerned calls up our website and for the entire duration of their stay on our website. This information is collected by the Facebook component and assigned by Facebook to the respective Facebook account of the person concerned. If the person concerned clicks on one of the Facebook buttons integrated on our website, for example the „Like“ button, or if the person concerned makes a comment, Facebook assigns this information to the personal Facebook user account of the person concerned and stores this personal data.
Facebook always receives information via the Facebook component that the person concerned has visited our website if the person concerned is logged in to Facebook at the same time as accessing our website; this takes place regardless of whether the person concerned clicks on the Facebook component or not. If the person concerned does not want this information to be transmitted to Facebook in this way, they can prevent the transmission by logging out of their Facebook account before accessing our website.
The data policy published by Facebook, available at https://dede. facebook.com/about/privacy/ provides information about the collection, processing and use of personal data by Facebook. There you will also find an explanation which setting options Facebook offers to protect the privacy of the person concerned. In addition, various applications are available that make it possible to suppress data transmission to Facebook, for example Facebook blocker provided by Webgraph, to be found under http://webgraph.com/resources/facebookblocker/. Such applications can be used by the person concerned to suppress data transmission to Facebook.
For the information service offered, we use the technical platform and services of Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA.
We would like to point out that you use this Instagram page and its functions at your own risk. This applies in particular to the use of the interactive functions (e.g. commenting or rating).
When you visit our Instagram page, Instagram records amongst other details your IP address and other information that is available on your PC in the form of cookies. This information is used to provide us, as the operator of the Instagram pages, with statistical information about the use of the Instagram page.
How Instagram uses the data collected while visiting Instagram pages for their own purposes, to what extent activities on the Instagram page are assigned to individual users, how long Instagram stores this data and whether data from a visit to an Instagram page is passed on to third parties is not stated conclusively and clearly by Instagram and not known to us.
When accessing an Instagram page, the IP address assigned to your end device is transmitted to Instagram. According to information received from Instagram the IP address is made anonymous (in case of „german” IP addresses) and will be deleted after 90 days. Instagram also stores information about its user‘s end device (e.g. as part of the „login notification“ function); Instagram is thus able to allocate IP addresses to individual users.
If you are currently logged in to Instagram as a user, there is a cookie with your Instagram ID on your device. This enables Instagram to understand that you have visited this page and how you have used it. This also applies to all other Instagram pages. Instagram buttons integrated into websites enable Instagram to record your visits to these websites and assign them to your Instagram profile. Based on this data, content or advertising tailored to you can be offered.
If you want to avoid this, you should log out of Instagram or deactivate the „remain signed in“ function, delete the cookies on your device and exit and restart your browser. This way information that can be used to identify you is deleted. This allows you to use our Instagram page without revealing your Instagram ID. When you access interactive features of the site (like, comment, message etc.), an Instagram login screen appears. After you have logged in, Instagram will recognize you again as a specific user.
Visit the Instagram help center for information on how to manage or delete information held about you.
Our website uses functions of the Xing network. The provider is XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany.
Each time one of our pages containing Xing functions is called up, a connection to the Xing servers is established. To our knowledge, no personal data is stored. In particular, no IP addresses are stored nor is usage behaviour evaluated.
Further information on data protection and the Xing share button can be found in the Xing data protection declaration: https://www.xing.com/app/share?op=data_protection
9. Processing of personal data from online applications
In the course of processing applications in our company, we work with the application platform of the service provider Workwise GmbH https://www.workwise.io/impressum. Recruitment on behalf of candidates or employers is not order processing, but rather the use of a third-party specialist service from an independent responsible (LDA-Bavaria, FAQ list from July 20, 2018). Further information on data protection of the service provider Workwise GmbH can be found in the data protection declaration https://www.workwise.io/datenschutz.
We process your application documents sent to us, including the files that you make available to us, exclusively to carry out an application process (Art. 6 (1) lit. b GDPR). We will contact you during the application process to inform you about the progress of your application or to invite you to an interview. After completing the application process, your data will be deleted after six months at the latest, unless you have given your consent that we keep your data to enable us to inform you about future suitable job offers (Art. 6 (1) lit. a GDPR).
10. Your rights
With regard to the processing operations described above, you have the rights listed below. You can use these free of charge. However, we reserve the right to charge a reasonable fee for requests that are obviously unsubstantiated or repeated frequently, taking into account the administrative cost incurred.
10.1. Revocation of granted consent
You can revoke any consent that you have given us for the processing of your personal data with effect for the future. However, this does not affect the legality of the processing of your data based on your consent until revocation.
10.2 Confirmation and disclosure
You can request confirmation as to whether your personal data is being processed. If this is the case, you have a right to disclosure of the individual information specified in Art. 15 GDPR.
10.3 Rectification and deletion
You can request the correction of incorrect and the completion of incomplete personal data (Art. 16 GDPR) and, under the conditions of Art. 17 GDPR, the deletion of your personal data.
10.4. Restriction of processing
You can restrict the processing of your personal data under the conditions of Art. 18 GDPR.
For reasons that arise from your particular situation, you can object to the processing of your personal data at any time if this is based on the legal basis of Art. 6 Para. 1 e) order f) GDPR. Your personal data will no longer be processed by us after the objection. The exception to this is if we can prove compelling legitimate reasons for processing that outweigh your interests, right and freedom or if processing serves to assert, exercise or defend legal claims.
10.6. Release of data and data portability
You can receive your personal data you have provided in a structured, commonly used and machine-readable format. As far as this is technically feasable, you have the right to have this data – following your instruction – transmitted to another person responsible. The right of data transfer only exists insofar as the processing is based on consent in accordance with Art. 6 Para. 1a) GDPR or on a contract in accordance with Art. 6 Para. 1b) GDPR and processing is carried out using automated procedures. This right is excluded if the right and freedom of other persons (in particular personal data of third parties, business or trade secrets exisiting on our part, copyrights) are thereby impaired.
11. Obligation to provide data
There is no legal or contractual obligation for you to provide your personal data. If you would like to make use of our services, the provision of your personal data is mandatory if this is necessary for the provision of the respective service.
New legal requirements or new offers on our website may make it necessary to update this data protection notice. We will keep you informed here.
Status: June 2023
Obligation to provide information according to Art. 13 GDPR
The protection of your personal data is particularly important to us. We therefore process your data exclusively on the basis of the legal provisions of the General Data Protection Regulation and the Federal Data Protection Act.
We, Stucke Elektronik GmbH, collect and process your personal data under the following conditions:
Purpose of data processing
Your personal data will only be processed to execute the contract or to fulfill contractual or pre-contractual obligations.
The provision of personal data is necessary for the execution of the contract in accordance with Article 6 Paragraph 1 Sentence 1b GDPR. The contract cannot be carried out without providing the data.
The following data is collected to carry out the contractual relationship:
- Personal data (name, address, telephone number, date of birth, etc.)
- Contact details (telephone, fax, email…)
Transfer to third parties
In order to execute this contractual relationship, the data will be passed on or transmitted to the following recipients and will also be processed there for the purpose of executing the contract:
- Management software/CRM software
- Fiscal authorities
- Freight forwarding companies
- Service providers
- Tax consultants
Duration of data storage
The data will be deleted immediately if storage is no longer necessary or if there are no commercial or tax requirements.
Transfer of your data to third countries or international organizations
There is no transfer to third countries (outside the European Economic Area – EEA).
You have the right of reception of information about the personal data concerned, as well as of correction, deletion or restriction of processing as well as the right to data portability.
If you have consented to data processing, you have the right to revoke your consent at any time. The lawfulness of data processing until revocation remains unaffected.
Complaint to the supervisory authority
If you believe that the processing of your data violates data protection law or that your data protection rights have been violated in any other way, you have the right to complain to the following supervisory authority:
The State Commissioner for Data Protection:
The Hamburg Commissioner for Data Protection and Freedom of Information
Ludwig-Erhard-Str. 22, 20459 Hamburg, 040-42854-4040
Name and address of the person responsible for processing
The person responsible in terms of the General Data Protection Regulation, other data protection laws applicable in the member state of the European Union and other provisions of a data protection nature is:
Stucke Elektronik GmbH
Head Office of stuckeGROUP
Phone no. +49 40 227468-0
Name and contact details of the external data protection officer
External data protection officer:
Swetlana Winter – CompanyCheck Deutschland GmbH
22767 Hamburg, Germany
Phone no.: +49 – 40 – 54 09 03 15 0
Deputy external data protection officer:
Ingo Passoth – CompanyCheck Deutschland GmbH
22767 Hamburg, Germany
Phone no.: +49 – 40 – 54 09 03 15 0