Data Safety

Privacy

Thank you for visiting our website and your interest in our company. The protection of your personal data is important to us and we take the protection of this data very seriously. We therefore adhere to the valid data protection regulations in all our business processes. Our data protection declaration does not extend to the websites of other providers to which we may be linked. By visiting our website, you consent to the use of your personal data and agree to the following privacy policy.

Definitions
This data protection declaration is based on the terminology of the European Data Protection Basic Regulation (DSGVO) and is intended to be easy to read and understand for the public as well as for our customers and business partners. To ensure this, we would like to explain the terms used in advance.

Personal data
Personal data is any information relating to an identified or identifiable natural person (hereinafter "data subject"). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

Person concerned
Data subject means any identified or identifiable natural person whose personal data are processed by the controller.

Processing
Processing is any operation or set of operations, performed with or without the aid of automated means, concerning personal data, such as collection, recording, organization, organization, filing, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

Restriction of processing
Restriction of processing is the marking of stored personal data with the aim of restricting their future processing.

Profiling
Profiling is any automated processing of personal data consisting of the use of such personal data to evaluate certain personal aspects relating to a natural person, in particular to analyse or predict aspects relating to the performance of work, economic situation, health, personal preferences, interests, reliability, conduct, whereabouts or change of location of that natural person.

Pseudonymization
Pseudonymization is the processing of personal data in such a way that the personal data can no longer be assigned to a specific data subject without the use of additional information, provided that this additional information is kept separately and is subject to technical and organizational measures that ensure that the personal data is not assigned to an identified or identifiable natural person.

Controller or data controller
Controller or data controller is the natural or legal person, public authority, agency or any other body which alone or jointly with others determines the purposes and means of the processing of personal data. Where the purposes and means of such processing are determined by Union law or by the law of the Member States, the controller or the specific criteria for its designation may be provided for by Union law or by the law of the Member States.

Order Processor
Processor is a natural or legal person, public authority, agency or other body that processes personal data on behalf of the controller.

Receiver
The recipient is a natural or legal person, authority, institution or other body to whom personal data is disclosed, whether or not it is a third party. However, public authorities which may receive personal data in the course of a specific investigation mandate under Union or national law shall not be considered as recipients.

Third party
A third party is a natural or legal person, public authority, agency or body other than the data subject, the controller, the processor and the persons who, under the direct authority of the controller or the processor, are authorized to process the personal data.

Consent
Consent is any freely given, informed and unequivocal expression of the data subject's will in a specific case, in the form of a declaration or other unequivocal affirmative act by which the data subject signifies his or her consent to the processing of personal data relating to him or her.

Name and contact details of the person in charge
is responsible for the processing of personal data in accordance with Art. 4 No. 7 DSGVO

Scheid [&] Partner (registered partnership company, No. 43)
Ralf Scheid
Elsternweg 7
90513 Zirndorf

Phone: +49 9127 /[nbsp]95 60 7
Fax: +49 9127 / 57 96 58
Mobile: +49 172 / 8978178

E-Mail: info(at)scheid-partner.de

Processing of personal data and the nature and purpose of their use
We process personal data exclusively within the lawful framework of the relevant legal norms and, if necessary, your consent. Personal data is all information that refers to a natural person or at least can be referred to and thus allows conclusions to be drawn about the person.

Processing is any operation or set of operations, performed with or without the aid of automated means, concerning personal data, such as collection, recording, organization, organization, filing, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

Visiting the website

When you visit our website, the browser used on your end device automatically sends information to the server of our website. This information is temporarily stored in a so-called log file.

The following information is collected and stored without your intervention:

IP address of the requesting computer,
Date and time of access,
Name and URL of the retrieved file,
Website from which the access is made (referrer URL),
the browser used and, if applicable, the operating system of your computer and the name of your access provider.

We process the data mentioned above for the following purposes:

Ensuring a smooth connection of the website,
Ensuring a comfortable use of our website,
Evaluation of system security and stability and
for further administrative purposes.

The legal basis for data processing is Art.[nbsp]6 para.[nbsp]1 p.[nbsp]1 lit.[nbsp]f DSGVO. Our legitimate interest follows from the above-mentioned purposes for data collection. Under no circumstances will we use the data collected for the purpose of drawing conclusions about your person.

Passing on of data
Your personal data will not be transferred to third parties for purposes other than those listed below. We only pass on your personal data to third parties if:

you have given your express consent in accordance with Art.[nbsp]6 Para.[nbsp]1 S.[nbsp]1 lit.[nbsp]a DSGVO
the disclosure pursuant to Art.[nbsp]6 para.[nbsp]1 p.[nbsp]1 lit.[nbsp]f DSGVO is necessary for the assertion, exercise or defense of legal claims and there is no reason to assume that you have an overriding interest worthy of protection in not disclosing your data,
in the event that there is a legal obligation to pass on the data in accordance with Art.[nbsp]6 Para.[nbsp]1 S.[nbsp]1 lit.[nbsp]c DSGVO, and
this is legally permissible and, according to Art.[nbsp]6 para.[nbsp]1 p.[nbsp]1 lit.[nbsp]b DSGVO, is required for the processing of contractual relationships with you.

Rights of data subjects
Since we process your personal data, you have the following rights:

Right of access to information
In accordance with Art.[nbsp]15 DSGVO, you can request information about your personal data processed by us. In particular, you may request information on the purposes of processing, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right of rectification, cancellation, restriction of processing or opposition, the existence of a right of appeal, the origin of your data, if not collected by us, as well as the existence of automated decision making including profiling and, if applicable, meaningful information on the details of the data;

Correction
In accordance with Art.[nbsp]16 DSGVO, you can immediately request the correction of incorrect or incomplete personal data stored by us.

Deletion
In accordance with Art.[nbsp]17 DSGVO, you can request the deletion of your personal data stored with us, unless the processing is necessary to exercise the right to freedom of expression and information, to fulfil a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims.

Restriction
In accordance with Art.[nbsp]18 DSGVO, you can request the restriction of the processing of your personal data if you dispute the accuracy of the data, if the processing is unlawful but you refuse to delete it and we no longer need the data, but you need it to assert, exercise or defend legal claims or if you have lodged an objection to the processing in accordance with Art.[nbsp]21 DSGVO.

Data transferability
In accordance with Art.[nbsp]20 DSGVO, you may receive your personal data that you have provided us with in a structured, common and machine-readable format or request that it be transferred to another responsible party.

Right of withdrawal
In accordance with Art.[nbsp]7 para.[nbsp]3 DSGVO, you can revoke your consent once you have given it to us at any time.

As a result, we may no longer continue to process the data which was based on this consent in the future.

Right of appeal
In accordance with Art.[nbsp]77 DPA, you can lodge a complaint with a supervisory authority if you believe that the processing of personal data concerning you is in breach of data protection regulations. As a rule, you can contact the supervisory authority at your usual place of residence or workplace or at our company headquarters.

Right of objection
If your personal data are processed on the basis of legitimate interests in accordance with Art.[nbsp]6 para.[nbsp]1 of the DPA, you have the right to object, in accordance with Art.[nbsp]21 DPA, to the processing of your personal data for reasons arising from your specific situation or if you object to direct marketing. In the latter case, you have a general right of objection, which will be implemented by us without specifying a special situation.

If you wish to exercise your right of revocation or objection, simply send us an e-mail.

Data protection for applications and in the application process
We process the personal data of applicants for the purpose of processing the application procedure. The processing can also be done electronically. This is particularly the case if an applicant submits the relevant application documents to us electronically, for example by e-mail or via a web form on the website. If we conclude an employment contract with an applicant, the data transmitted will be stored for the purpose of processing the employment relationship in compliance with the statutory provisions. If the data controller does not conclude an employment contract with the applicant, the application documents are automatically (?) deleted two months after notification of the rejection decision, provided that no other legitimate interests of the data controller conflict with deletion. Other legitimate interests in this sense include, for example, a duty of proof in proceedings under the General Equal Treatment Act (AGG).

Duration for which the personal data is stored
The criterion for the duration of storage of personal data is the respective legal retention period. After this period has expired, the corresponding data is routinely (?) deleted if it is no longer required for the fulfilment of the contract or the initiation of a contract.

Existence of an automated decision making process
As a responsible company, we avoid automatic decision making or profiling.

Data security
We use the common SSL (Secure Socket Layer) method (?) for encryption within the website visit. You can tell whether an individual page of our website is being transmitted in encrypted form by the closed display of the key or lock symbol in the lower status bar of your browser.

We also use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.

Changes to this privacy policy
This privacy policy is currently valid. Due to the further development of our website and offers above or due to changed legal or official requirements, it may become necessary to change this data protection declaration. The current data protection declaration can be called up and printed out at any time on our website.

Status April 2018

Name	Purpose	Lifetime	Type	Provider
_gcl_au	Used by Google AdSense to experiment with advertisement efficiency.	3 months	HTML	Google
AMP_TOKEN	Contains a token that can be used to retrieve a Client ID from AMP Client ID service. Other possible values indicate opt-out, inflight request or an error retrieving a Client ID from AMP Client ID service.	1 year	HTML	Google
_dc_gtm_--property-id--	Used by DoubleClick (Google Tag Manager) to help identify the visitors by either age, gender or interests.	2 years	HTML	Google