Privacy Policy

 

Thank you for visiting our website www.joro.de and for your interest in our company.

The protection of your personal data, such as date of birth, name, telephone number, address etc., is important to us.

The purpose of this privacy policy is to inform you about the processing of your personal data that we collect from you when you visit our website. Our data protection practice is in accordance with the statutory provisions of the EU General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG). The following privacy statement serves to fulfill the information obligations resulting from the GDPR. These can be found e.g. in Art. 13 and Art. 14 ff. GDPR.

 

Controller

The controller within the meaning of Art. 4 No. 7 GDPR is the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.

With regard to our website, the controller is:

joro türen GmbH
Industrie West
(Im Muhrhag 7)
D-77871 Renchen
Germany
Email: info@joro.de
Ph.: +49 7843 9464-0
Fax: +49 7843 9464-18

 

Provision of the website and creation of log files

Every time our website is accessed, our system automatically collects data and information from the respective device (e.g. computer, mobile phone, tablet, etc.).

Which personal data are collected and to what extent are they processed?

(1) Information about the browser type and version used;
(2) The operating system of the retrieval device;
(3) Host name of the accessing computer;
(4) The IP address of the retrieval device;
(5) Date and time of access;
(6) Websites and resources (images, files, other page content) that were accessed on our website;
(7) Websites from which the user's system reached our website (referrer tracking);
(8) Notification of whether the request was successful;
(9) Amount of data transferred

This data is stored in the log files of our system. This data is not stored together with the personal data of a specific user, so that individual site visitors are not identified.

Legal basis for the processing of personal data

Art. 6 para. 1 lit. f GDPR (legitimate interest). Our legitimate interest is to ensure that the purpose described below is achieved.

Purpose of data processing

The temporary (automated) storage of the data is necessary for the course of a website visit in order to enable the website to be delivered. The storage and processing of personal data is also carried out to maintain the compatibility of our website for as many visitors as possible and to combat abuse and eliminate faults. For this it is necessary to log the technical data of the accessing computer in order to be able to react as early as possible to display errors, attacks on our IT systems and/or errors in the functionality of our website. In addition, we use the data to optimize the website and to generally ensure the security of our information technology systems.

Duration of storage

The aforementioned technical data are deleted as soon as they are no longer needed to ensure the compatibility of the website for all visitors, but no later than 3 months after our website has been accessed.

Right to object and to erasure

You can object to the processing at any time in accordance with Art. 21 GDPR and request the deletion of data in accordance with Art. 17 GDPR. You can find out which rights you are entitled to and how you can exercise them in the lower section of this privacy policy.

 

Special functions of the website

Our site offers you various functions that collect, process and store personal data when you use them. In the following we explain what happens to this data:

Callback-Service

  • Which personal data are collected and to what extent are they processed?

    We will process the data you enter in our callback form, such as telephone number and name, to fulfill the following purpose.

  • Legal basis for the processing of personal data

    Art. 6 para. 1 lit. a GDPR (consent through clear confirmatory action or behavior)

  • Purpose of data processing

    Provision and implementation of the callback service, fulfillment of the callback request.

  • Duration of storage

    The data will be deleted as soon as it is no longer required to process your callback request.

  • Revocation and deletion options

    The revocation and deletion options are based on the general provisions on the right of revocation and deletion under data protection law described below in this privacy policy.

  • Necessity of providing personal data

    The information in the callback form is neither contractually nor legally required and is also not required to conclude a contract. If you do not fill in the mandatory fields or fill them out completely, we will not be able to process the callback request you have requested.

Contact form(s)

  • Which personal data are collected and to what extent are they processed?

    The data you have entered in our contact form, which you have entered in the input mask of the contact form.

  • Legal basis for the processing of personal data

    Art. 6 para. 1 lit. a GDPR (consent through clear confirmatory action or behavior)

  • Purpose of data processing

    The data recorded via our contact form or via our contact forms will only be used by us to process the specific contact request received via the contact form. Please note that we may also send you emails to the address provided to fulfill your contact request. The purpose of this is so that you can receive confirmation from us that your request has been correctly forwarded to us. Sending this confirmation email is not mandatory for us and is for your information only.

  • Duration of storage

    After your request has been processed, the data collected will be deleted immediately, provided that there are no statutory retention periods.

  • Revocation and deletion options

    The revocation and deletion options are based on the general provisions on the right of revocation and deletion under data protection law described below in this privacy policy.

  • Necessity of providing personal data

    The use of the contact forms is voluntary and is not required by contract or by law. You are not obliged to contact us via the contact form, but can also use the other contact options listed on our website. If you would like to use our contact form, you must fill in the fields marked as required. If you do not fill in the necessary information on the contact form, you will either not be able to send the request or we will unfortunately not be able to process your request.

 

Integration of external web services and processing of data outside the EU

We use active content from external providers on our website, so-called web services. By calling up our website, these external providers may receive personal information about your visit to our website. Processing of data outside the EU may be possible. You can prevent this by installing a corresponding browser plugin or by deactivating the execution of scripts in your browser. This can lead to functional restrictions on the websites that you visit.

We use the following external web services:

  • website-check.de

    A web service from Website-Check GmbH, Beethovenstrasse 24, 66111 Saarbrücken, Germany (hereinafter: website-check.de) is loaded onto our website. We use this data to ensure the full functionality of our website. In this context, your browser may transmit personal data to website-check.de. The legal basis for data processing is Art. 6 para. 1 lit. f GDPR. The legitimate interest consists in the correct functioning of the website. The data will be deleted as soon as the purpose for which it was collected has been fulfilled. Further information on the handling of the transferred data can be found in the privacy policy of website-check.de: https://www.website-check.de/datenschutzerklaerung/

    You can prevent the collection and processing of your data by website-check.de by deactivating the execution of script code in your browser or by installing a script blocker in your browser.

 

Data security and data protection, communication by email

Your personal data are protected by technical and organizational measures during collection, storage and processing so that they are not accessible to third parties. In the case of unencrypted communication by email, we cannot guarantee complete data security on the transmission path to our IT systems, so we recommend encrypted communication or post for information with a high level of confidentiality.

 

Automatic email archiving

  • Scope of the processing of personal data

    We expressly point out that our email system has an automated archiving process. All incoming and outgoing emails are digitally archived in a tamper-proof manner.

  • Legal basis for the processing of personal data

    Art. 6 para. 1 lit. c GDPR (legal obligation). The legal obligation consists in compliance with tax and commercial law requirements (e.g. sections 146, 147 German Tax Code Law AO, sections 238, 257 German Commercial Code HGB).

  • Purpose of data processing

    The purpose of archiving is to comply with tax law (e.g. sections 146, 147 German Tax Code Law AO – duty to store emails that are relevant to tax law) and commercial law (e.g. sections 238, 257 German Commercial Code HGB – duty to archive business correspondence).

  • Duration of storage

    Our email communication is stored until the retention obligations under tax and commercial law have expired. The retention period can be up to 10 years.

  • Right to object and to erasure

    You can object to the processing at any time in accordance with Art. 21 GDPR and request the deletion of data in accordance with Art. 17 GDPR. You can find out which rights you are entitled to and how you can exercise them in the lower section of this privacy policy.

  • Handling of application documents

    We also point out that we only consider application documents in PDF file form. Zipped files (WinZip, WinRAR, 7Zip etc.) are filtered out by our security systems and not delivered. We disregard applications in Word file format and other file formats and delete them unread. Please note that application documents sent unencrypted by email may be opened by third parties before they reach our IT systems. We act on the assumption that we may also reply to unencrypted application emails without encryption. If you do not want this, please mention this in your application email.

 

Right to information and correction requests – deletion & restriction of data – revocation of consent – right of objection

Right to information

You have the right to request confirmation as to whether we are processing your personal data. If this is the case, you have a right to information about the information named in Art. 15 para. 1 GDPR, provided that the rights and freedoms of other persons are not impaired (see Art. 15 para. 4 GDPR). We would be happy to provide you with a copy of the data.

Right to correction

According to Art. 16 GDPR you have the right to have incorrectly stored personal data (such as address, name etc.) corrected at any time. You can also request that the data stored by us be completed at any time. A corresponding adjustment will be made immediately.

Right to erasure

According to Art. 17 para. 1 GDPR you have the right to have us delete the personal data collected about you if

  • the data is either no longer needed;
  • due to the revocation of your consent, the legal basis for the processing no longer applies;
  • you have objected to the processing and there are no legitimate reasons for the processing;
  • your data is being processed unlawfully;
  • a legal obligation requires this or an inquiry according to Art. 8 para. 1 GDPR has taken place.

According to Art. 17 para. 3 GDPR, this right does not exist if

  • the processing is necessary for the exercise of the right to freedom of expression and information;
  • your data has been collected on the basis of a legal obligation;
  • the processing is necessary for reasons of public interest;
  • the data is required for the establishment, exercise or defense of legal claims.

Right to restriction of processing

According to Art. 18 para. 1 GDPR, you have the right in individual cases to request that the processing of your personal data be restricted.

This is the case when

  • you dispute the correctness of the personal data;
  • the processing is unlawful and you do not consent to deletion;
  • the data are no longer required for the processing purpose, but the data collected serve to assert, exercise or defend legal claims;
  • an objection has been filed against the processing pursuant to Art. 21 para. 1 GDPR and it is still unclear which interests prevail.

Right of revocation

If you have given us your express consent to the processing of your personal data (Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR) you can revoke this at any time. Please note that this does not affect the legality of the processing carried out on the basis of the consent until the revocation.

Right to object

Pursuant to Art. 21 GDPR, you have the right to object at any time to the processing of personal data concerning you that has been collected on the basis of Art. 6 para 1 lit f (within the scope of a legitimate interest). You are only entitled to the right if there are special circumstances that speak against storage and processing.

How do you exercise your rights?

You can exercise your rights at any time by using the contact details below:

joro türen GmbH
Industrie West
(Im Muhrhag 7)
D-77871 Renchen
Germany
Email: info@joro.de
Ph.: +49 7843 9464-0
Fax: +49 7843 9464-18

 

Right to data portability

In accordance with Art. 20 GDPR you have the right to transfer your personal data. We provide the data in a structured, commonly used and machine-readable format. The data can either be sent to you or to a responsible person named by you.

On request, we will provide you with the following data in accordance with Art. 20 para. 1 GDPR:

  • Data collected on the basis of express consent in accordance with Art. 6 para. 1 lit a GDPR or Art. 9 para. 2 lit a GDPR;
  • Data which we have received from you in accordance with Art. 6 para. 1 lit. b GDPR within the framework of existing contracts;
  • Data that has been processed as part of an automated procedure.

We will transfer the personal data directly to a responsible person of your choice, insofar as this is technically feasible. Please note that pursuant to Art. 20 para. 4 GDPR we are not allowed to transfer data that encroach on the freedoms and rights of other people.

 

Right of appeal to the supervisory authority in accordance with Art. 77 para. 1 GDPR

If you suspect that your data is being processed illegally on our site, you can of course seek legal clarification of the problem at any time. In addition, all other legal options are open to you. Regardless of this, according to Art. 77 para. 1 GDPR you have the option to contact a supervisory authority. You have the right of appeal according to Art. 77 DSGVO in the EU Member State of your place of residence, your place of work and/or the place of the alleged infringement, i.e. you can choose the supervisory authority to contact from the above-mentioned places. The supervisory authority to which the complaint was submitted will then inform you of the status and results of your submission, including the possibility of a judicial remedy in accordance with Art. 78 GDPR.

 

Created by:

© IT law firm DURY – www.dury.de

© Website-Check GmbH – www.website-check.de