We very much appreciate your interest in our company. Data protection is of particular importance to the management of FFT Produktionssysteme GmbH & Co. KG. Basically, it is possible to use the Internet pages of FFT Produktionssysteme GmbH & Co. KG without supplying any personal information. However, if a person wishes to make use of specific services of our company via our Internet pages, processing of personal data may become necessary.
Processing of personal data, such as the relevant person’s name, address, e-mail address or telephone number, is always carried out in accordance with the General Data Protection Regulation and in compliance with the country-specific data protection regulations applicable to FFT Produktionssysteme GmbH & Co. KG. By means of this data protection declaration, our company would like to inform affected persons about the type, scope and purpose of the personal data that we collect, use and process. Moreover, this data protection declaration will also inform affected persons as to their rights.
The responsible entity in the meaning of the General Data Protection Regulation and other national data protection laws of the EU Member States, as well as other data protection regulations, is:
FFT Produktionssysteme GmbH & Co. KG
Industriepark Fulda-West
Schleyerstraße 1
36041 Fulda
Deutschland
Tel.: +49 661 2926-0
Fax: +49 661 2926-100
E-Mail: info[at]fft.de
Website: www.fft.de
The Data Protection Officer of the responsible entity is:
BerIsDa GmbH
Markus Möller
Justus-Liebig-Str. 4
36093 Künzell
Telephone: +49 661 - 29698090
Fax: +49 661 - 29698099
E-Mail: dsb[at]fft.de
Fundamentally, we only collect and use personal data of our users to the extent necessary to provide our content and services and to provide a functional website. Collection and utilization of the personal data of our users is undertaken at regular intervals and only with the user's consent. An exception applies in those cases where prior consent cannot be obtained for circumstantial reasons and the processing of the data is permitted by law.
Insofar as we obtain the consent of the affected person for processing procedures on their personal data, Art. 6 Para. 1(a) of the EU General Data Protection Regulation (GDPR) serves as the legal basis for processing personal data.
For processing personal data that is necessary for fulfilment of a contract to which the affected person is a party, Art. 6 Para. 1(b) GDPR serves as the legal basis. This also applies to processing that is necessary for carrying out pre-contractual measures.
Insofar as the processing of personal data is necessary to fulfil a legal obligation to which our company is subject, Art. 6 Para. 1(c ) of the GDPR serves as the legal basis.
In the event that vitally important interests of the affected person or another natural person require processing of personal data, Art. 6 para. 1(d) of the GDPR serves as the legal basis.
If processing is necessary to safeguard a legitimate interest of our company or of a third party and if the interests, fundamental rights and freedoms of the affected person do not outweigh the first-mentioned interest, Art. 6 para. 1(f) of the GDPR serves as the legal basis for the processing.
The affected person's personal data will be deleted or blocked as soon as the purpose of retention ceases to exist. Furthermore, data may be stored if this has been provided for by the European or national legislator in EU regulations, laws or other provisions to which the responsible party is subject. Data are also blocked or deleted once a retention period prescribed by the specified standards expires, unless there is a need for further retention of the data in order to conclude or fulfil a contract.
Every time you visit our website, our system automatically collects data and information from the computer system of the invoking computer.
In doing so, the following data is collected:
(1) Information on the browser type and the version being used
(2) The operating system of the user
(3) The Internet service provider of the user
(4) The IP address of the user
(5) The date and time of access
(6) Websites from which the system of the user lands on our Internet page
(7) Websites that are called by the system of the user via our website
The data are also stored in the logfiles of our system. These data are not stored together with other personal data of the user.
The legal basis for temporary storage of the data and log files is Art. 6 para. 1(f) of the GDPR.
Temporary storage of the IP address by the system is necessary to enable the delivery of the website to the user's device. To that end, the user's IP address has to be stored for the duration of the session.
The data are stored in log files to ensure the website's functionality. In addition, the data serve to optimise the website and to ensure the security of our information technology systems. No evaluation of the data for marketing purposes is performed in this connection.
These purposes also encompass our legitimate interest in data processing in accordance with Art. 6 para. 1(f) of the GDPR.
The data are deleted as soon as they are no longer required to achieve the purpose for which they were collected. In the case of data collection for making the website available, deletion will be undertaken when the respective session has ended.
If any data are stored in log files, they will be deleted after seven days at the latest. Retention beyond this period is possible. In such a case, the IP addresses of the users are deleted or defaced, so that it is no longer possible to correlate to the invoking client.
Collection of the data for making the website available and storage of the data in log files is essential for the operation of the website. Consequently, there is no option for the user to object to the collection and retention.
There is a contact form on our website which can be used for making contact electronically. If a user makes use of this option, the data entered in the input form will be transmitted to us and saved. These data are:
(1) Name, first name
(2) e-mail address
(3) Telephone number
(4) Your message to us
In addition, the following data are also stored at the time the message is sent:
(1) The IP address of the user
(2) The date and time of access
During the process of sending, your consent is obtained for processing the data and your attention is drawn to this data protection declaration.
Alternatively, you can also contact us using the e-mail address provided. In that case, the user's personal data which are transmitted along with the email will be stored.
In this context, there will not be any disclosure of the data to third parties. The data will be used exclusively for responding to the email and for the subsequent conversation.
The legal basis for processing the data, if the user's consent to it has been obtained, is Art. 6 para. 1(a) of the GDPR.
The legal basis for processing the data transferred in the course of sending an email is Art. 6 para. 1(f) of the GDPR. If the ultimate purpose of sending the email is entering into contract with us, the additional legal basis for the data processing is Art. 6 para. 1(b) of the GDPR.
We use personal data provided on contact forms only to make the requested contact. If contact is made via email, there is also the required legitimate interest in the processing of the data.
The other personal data processed during the sending process are used to prevent misuse of the contact form and to ensure the security of our information technology systems.
The data are deleted as soon as they are no longer required to achieve the purpose for which they were collected. For the personal data from input screen of the contact form and the data that were sent by e-mail, this is the case when the respective conversation with the user has been completed. The conversation will be said to have ended when it is evident from the circumstances that the matter at hand has been conclusively resolved.
Personal data that were additionally collected during the sending procedure will be deleted at the latest after a period of seven days.
The user has the option of revoking his or her consent to the processing of personal data at any time. If the user has contacted us by email, he may withdraw consent for the storage of his personal data at any time. In such a case, the conversation cannot be continued.
You can notify the withdrawal of consent either by post, by e-mail or by fax to the responsible entity.
In such cases, all personal data stored in the course of establishing contact with us will be deleted.
Our website uses functions of the LinkedIn network. The provider is LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA. Each time one of our pages containing LinkedIn features is accessed, your browser establishes a direct connection to the LinkedIn servers. LinkedIn will be informed that you have visited our Internet pages, with your IP address. When you click the “Recommend” button of LinkedIn and are logged in to your LinkedIn account, it is possible for LinkedIn to link your visit to our Internet pages to you and your user account. We draw attention to the fact that as providers of the pages, we have no knowledge of the content of the transmitted data or their use by LinkedIn.
You can get additional information on this in the data privacy declaration of LinkedIn at: https://www.linkedin.com/legal/privacy-policy
In the course of processing your online application, we collect and process the following personal application data:
(1) Name, first name
(2) e-mail address
(3) Telephone number
(4) Application documents (letter of application, CV, certificates, etc.)
Your personal application data are collected and processed exclusively for the purpose of filling positions in our company. Your data will be forwarded only to the internal departments and divisions responsible for the specific application procedure in question. Your personal application data will not be forwarded without your express prior consent.
Your personal application data will normally be deleted automatically six months after completion of the application process. This does not apply if statutory provisions preclude deletion, continued storage is required for the purpose of preservation of evidence, or you have expressly agreed to a longer retention duration.
If we are unable to match you to a vacancy, but your profile suggests that your application may be of interest for future job postings, we will store your personal application information for a period of twelve months if you expressly consent to such retention and use.
The responsible entity collects and processes the personal data of applicants for the purpose of carrying out the application procedure. Processing may also be carried out electronically. This is particularly the case if an applicant sends the corresponding application documents by electronic means, for example, by e-mail or via a web form on the website, to the person responsible for the processing. If the person responsible for the processing signs an employment contract with an applicant, the data transmitted shall be stored for the purpose of processing the employment relationship in compliance with the statutory provisions. If the person responsible for the processing does not conclude an employment contract with the applicant, the application documents shall be automatically deleted six months after notification of the decision of refusal, provided that no other legitimate interests of the person responsible for the processing stand in the way of the deletion. Other legitimate interests in this sense include, for example, retaining evidence for use in proceedings under AGG, the German Equal Opportunities Act.
This site uses so-called web fonts provided by Google for the uniform depiction of fonts. When you open a page, your browser loads the required web fonts into your browser cache in order to display texts and fonts correctly. If your browser does not support web fonts, your computer will use a default font.
Further information on Google Web Fonts can be found at developers.google.com/fonts/faq and in the data protection policy declaration from Google: https://www.google.com/policies/privacy/
If your personal data are processed, you are an affected person in the meaning of the GDPR and you have the following rights vis-à-vis the responsible entity:
You may demand a confirmation from the responsible entity whether personal data concerning you is being processed by us.
If such is indeed the case, you can request the following information from the responsible entity:
(1) the purposes for which the personal data are being processed;
(2) the categories of personal data being processed;
(3) the recipients or categories of recipients to whom your personal data have been or will be disclosed;
(4) the planned duration of retention of your personal data, or, if specific information in this respect is not possible, the criteria for determining the retention period;
(5) the existence of a right to have your personal data corrected or deleted, a right to restrict its processing by the responsible entity or to object to such processing;
(6) the existence of the right to lodge a complaint with a watchdog authority;
(7) any available information on the origin of the data if the personal data have not been collected from the affected person;
(8) the existence of an automated decision-making process, including profiling in accordance with Art. 22 para. 1 and 4 of the GDPR and – at least in these cases – meaningful information on the logic involved and the scope and intended effects of such processing for the affected person.
You have the right to request information as to whether your personal data will be transmitted to a third-party country or an international organisation. In this connection, you can demand to be informed about the suitable guarantees in accordance with Art. 46 of the GDPR in conjunction with such a transmission.
If the processed personal data related to you is incorrect or incomplete, you have the right to demand rectification and/or completion by the responsible entity. The responsible entity must make the correction without delay.
You may ask for the processing of your personal data to be restricted under the following conditions:
(1) if you contest the accuracy of your relevant personal data, for as long as it takes so that the responsible entity can verify their accuracy;
(2) the processing is unlawful and you refuse to have the data deleted and instead wish to restrict their use;
(3) the responsible entity no longer needs the personal data for processing purposes, but you need them to establish, exercise, or defend legal claims, or
(4) you have objected to the processing in accordance with Art. 21 para.1 of the GDPR and it has not yet been established whether the responsible entity's legitimate reasons for processing your data outweigh your reasons.
If processing of the personal data that concerns you has been restricted, such data – apart from being stored – may be processed only with your consent or for the purpose of asserting, exercising or defending the rights or protecting the rights of another natural or legal person or on the grounds of an important public interest of the European Union or of a Member State.
If the limitation of the processing has been restricted for any of the grounds listed above, the responsible entity will notify you before lifting the restriction.
You have the right to demand that the responsible entity delete your personal data without delay, and the responsible entity is obligated to delete these data without delay if one of the following reasons applies:
(1) Your personal data is no longer required for the purposes for which it was originally collected or otherwise processed.
(2) You revoke your consent upon which its processing was based in accordance with Art. 6 para. 1(a) or Art. 9 para. 2(a) of the GDPR, and there is no other legal basis for the processing.
(3) You object to processing in accordance with Art. 21 para 1 if the GDPR and there are no overriding legal grounds for the processing, or you submit an objection to processing in accordance with Art. 21 para. 2 of the GDPR.
(4) Your personal data have been processed unlawfully.
(5) The deletion of personal data relating to you is required in order to comply with a legal obligation according to EU law or national law of the Member States to which the responsible entity is subject.
(6) Your personal data have been collected in connection with services offered by an information company as per Art. 8 para. 1 of the GDPR.
If the responsible entity has made your personal data public and is obligated to delete it under Art. 17 para. 1 of the GDPR, it will take appropriate measures, including measures of a technical nature, taking into account the available technology and the implementation costs, to inform data processors who process the personal data that the relevant person whose data are involved has requested the deletion of all links to this personal data as well as any copies or replications of the personal data.
The right to deletion does not exist if processing is necessary
(1) to exercise the right to freedom of expression and information;
(2) to fulfil a legal obligation that requires processing under the law of the Union or of the Member States to which the responsible entity is subject, or for the performance of a task in the public interest or in the exercise of official authority conferred on the responsible entity;
(3) for reasons of public interest in the area of public health in accordance with Art. 9 para. 2(h) and (i) as well as Art. 9 para. 3 of the GDPR;
(4) for archiving, scientific, or historical research purposes in the public interest or for statistical purposes in accordance with Art. 89 para. 1 of the GDPR, to the extent that the right referred to in paragraph a) is likely to render impossible or seriously impair the achievement of the purposes of such processing; or
(5) to assert, exercise, or defend legal claims.
If you have asserted the right to rectification, erasure or restriction of processing to the responsible entity, the responsible entity is obliged to notify all recipients to whom the personal data concerning you have been disclosed of this rectification or erasure of the data or the restriction of their processing, unless this proves to be impossible or involves a disproportionate amount of effort.
You have the right - which can be asserted against the responsible party - to be informed about who these recipients are.
You have the right to obtain your personal data that you have provided to the responsible entity in a structured, commonly used and machine-readable format. Moreover, you have the right to transmit these data to another responsible entity without hindrance by the original responsible party to whom they were originally provided, provided that
(1) the processing is based on a consent in accordance with Art. 6 para. 1(a) of the GDPR or Art. 9 para. 2(a) of the GDPR or on a contract according to Art. 6 para. 1(b) of the GDPR and
(2) the processing takes place through automated processes.
In exercising this right, you also have the right to bring about that the personal data relating to you are transmitted directly from one responsible entity to another, in so far as this is technically feasible. The freedoms and rights of other persons must not be violated as a result.
The right to data portability does not apply to processing of personal data that is required for the performance of a task that is in the public interest, or in the exercise of official authority conferred upon the responsible entity;
You have the right, for reasons arising from your specific situation, to object to the processing of your personal data which is being carried out on the basis of Art. 6 para. 1(e) or (f) of the GDPR, at any time; this also applies to any profiling that is being carried out based on these provisions.
The responsible entity will no longer process the personal data relating to you unless they can prove compelling legitimate reasons for the processing, which outweigh your interests, rights and freedoms, or unless the processing serves to assert, exercise or defend legal claims.
If the personal data relating to you are processed for direct marketing purposes, you have the right to object at any time to the processing of your personal data for the purpose of such advertising; this also applies to any profiling if it is done in connection with such direct advertising.
If you object to your data being processed for direct marketing purposes, your personal data will no longer be processed for such purposes.
In connection with the use of services of the information technology company, you have the option – notwithstanding Directive 2002/58/EC – of exercising your right to object using automated processes, in which technical specifications are used.
You have the right to revoke your declaration of consent under the data privacy law at any time. Such a revocation will not affect the lawfulness of any processing done prior to the revocation. You can notify the withdrawal of consent either by post, e-mail or fax to the responsible entity.
You have the right not to be subjected to a decision based solely on automated processing – including profiling – that will have legal consequences for you or significantly hinder you in a similar manner. This does not apply if the decision
(1) is necessary for the conclusion or fulfilment of a contract between you and the responsible entity,
(2) is permissible on the basis of legal stipulations of the EU or the Member States, to which the responsible entity is subject, and these legal stipulations include reasonable measures for guaranteeing your rights and freedoms as well as your legitimate interests or
(3) is made with your express consent.
However, these decisions must not be based on special categories of personal data pursuant to Art. 9 para. 1 of the GDPR, provided that Art. 9 para. 2(a) or (g) do not apply and reasonable measures were taken to protect the rights and freedoms as well as your legitimate interests.
In the cases referred to in (1) and (3), the responsible entity shall take reasonable measures to safeguard the rights and freedoms as well as your legitimate interests, which includes at least the right to obtain the intervention of a person on the part of the responsible entity, the right to state his or her own position and to challenge the decision.
Without prejudice to any other administrative or judicial remedy, you have the right of appeal to a watchdog authority, in particular in the Member State of your residence, workplace or where the infringement is suspected, if you are of the view that the processing of personal data that concerns you is in contravention of the GDPR.
The watchdog authority with whom the appeal is filed shall inform the appellant regarding the status and results of the appeal, including the possibility of a judicial remedy under Art. 78 of the GDPR.
The responsible watchdog authority is:
‘Der Hessische Beauftragte für Datenschutz und Informationsfreiheit’ (The Commissioner of Data Protection and Freedom of Information of the State of Hesse)
Gustav-Stresemann-Ring 1
65189 Wiesbaden
Last updated: August 2019