Data Protection Statement

1. Data Protection at one glance

General information

The following information provides a simple overview of what happens with your personal data when you visit our website. Personal data comprise all data which you can be identified with personally. Detailed information on data protection can be found below in our detailed data protection statement.

Data Collection on our website

Who is the data controller on our website?
The data controller of this website is the website owner. The owner’s contact details can be found in the imprint of this website.

How do we collect your data?
Firstly, your data is collected when you submit them to us. For example, this is the case when you enter your data in a contact form. Other types of data are collected automatically by our IT systems when you visit our website. These are primarily technical data (e.g. internet browser, operating system or time of the page view). This type of data is collected automatically when you visit our website.

What do we use your data for?
A part of your data is collected to guarantee the provision of the website free from any defects. Other data can be used to analyse your user behaviour.

What rights do you have regarding your data?
At any time, you have the right to obtain information free of charge on the origin, receiver and purpose of your personal data saved by us. You also have the right to request the correction, blocking or deletion of this data. If you have any questions regarding this or data protection in general, please feel free to contact us any time at the given address in the imprint. Besides you have the right to lodge a complaint with the competent data protection authority.

Under certain circumstances you have the right to demand the processing of your personal data to be restricted. Details on this can be found under “Right to restricted data processing”.

Anaylsis tools and tools of third parties

While visiting our website your surf behaviour can be analysed statistically using cookies in particular or other so-called analysis programmes. The analysis of your surf behaviour is normally anonymous; it cannot be traced back to you. You can object to this analysis or prevent it by not using certain tools. Detailed information about these tools and other possibilities of revocation can be found in the following data protection statement.

2. General and obligatory information

Data protection

The owners of this website take the protection of your personal data very seriously. We keep your personal data confidential and deal with them according to the legal data protection regulations as well as this data protection statement.

If you use this website, various personal data are collected. Personal data are data which you can be personally identified with. The present data protection statement explains which data are collected and what they are used for. It also explains how and to what purpose they are collected.

We point out that the data transmission on the internet can have security leaks (e.g. in case of e-mail communication). We cannot guarantee a complete protection of your data against the access of third parties.

Information on the data controller

The data controller responsible for the data processing on this website is:
bancon GmbH
Josef-Reiert-Str. 4
69190 Walldorf


Tel.: +49 6227 3097876
E-Mail: info@bancon-it.com

The data controller is a natural person or legal entity that decides solely or jointly with third parties on the purposes and means to process personal data (e.g. names, e-mail addresses, and other).

Legally required data protection officer

Our company’s data protection officer is:
Andreas Schwarz
Staufer Straße 13
67133 Maxdorf

E-Mail: andreas.schwarz.sv@web.de

Revocation of your consent to process your data

Many data processing operations can only be conducted with your explicit consent. You may, at any time, revoke consent granted previously. To do so it is sufficient to send us a notice without any specific form by e-mail. The legitimacy of data processing carried out until the point of revocation remains unaffected by the revocation.

Right to object to data collection in special cases and direct advertising (art.21 GDPR)

If data processing is carried out on the basis of Art. 6(1)(e) or (f) GDPR, you have, at any time, the right to object to the processing of your personal data out of reasons arising from your particular situation; this also applies to profiling based on these provisions. The respective legal basis on which the data processing is based is part of this data protection statement. If you object, we stop processing your personal data affected unless we can prove compelling reasons worthy of protection for the data processing which outweigh your interests, rights and liberties or the processing serves the assertion, exercise or defense of legal claims (objection pursuant to Art. 21(1) GDPR). If your personal data are processed for direct advertising, you have, at any time, the right to object to the processing of your personal data for the purpose of this type of advertising; this also applies to profiling if it is related to such direct advertising. If you object, your personal data is then no longer used for the purposes of direct advertising (objection pursuant Art. 21(2) GDPR).

Right to lodge a complaint with the competent data protection authority

In case of violations of the GDPR the affected parties have the right to lodge a complaint with a data protection authority, in particular in the member state of their residence, their workplace or the location of the presumed violation. The right to lodge a complaint is without prejudice to other administrative or judicial remedies.

Right to data transmission

You have the right to have your data surrendered to you or a third party in a common machine-readable format; these data were processed automatically on the basis of your prior consent or in the execution of a contract. A direct transmission of your data to a different controller upon your request will only occur if technically feasible.

SSL or TSL encryption

This website uses SSL or TSL encryption for security reasons and for the protection of the transmission of confidential contents, e.g. orders or enquiries you submit to us, the website owner. An encrypted connection can be recognised by the fact that the address bar of your browser changes from “http://” to “https://” and a lock symbol appears in the browser line.

If the SSL or TLS encryption is active, the data you submit to us cannot be read by third parties.

Information, blocking, deletion or correction

Within the framework of existing legislation you have, at any time, the right to a free disclosure of your saved personal data, their origin and receiver and the purpose of the data processing and where applicable the right to correction, blocking or deletion of these data. If you have any further questions regarding this or the subject of personal data, please feel free to contact us any time at the given address in the imprint.

Right to restricted data processing

You have the right to request the restriction of processing your personal data. You can contact us at any time at the address given in the imprint. You have the right to a restriction of data processing in the following cases:

  • If you deny the accuracy of your personal data we saved, we normally need time to verify that. As long as the verification process is ongoing, you have the right to request the restriction of the processing of your personal data
  • If the processing of your personal data was/is conducted unlawfully, you can request a restriction of the data processing instead of deletion.
  • If we do not longer need your personal data, but you need them to exercise, defend or assert legal claims, you can request a restriction of the processing of your personal data instead of deletion.
  • If you have filed an objection under Art. 21(1) GDPR, a balance between your and our interests need to be found. As long as it is not certain whose interests prevail, you have the right to request the restriction of the processing of your personal data.

If you have restricted the processing of your personal data, these data may only be processed – besides their storage – with your consent or in order to assert, exercise or defend legal claims or to protect rights of a different natural person or legal entity or for reasons of important public interest of the EU or a member state.

Objection to receiving promotional e-mails

We hereby expressly prohibit the use of the contact data published as part of our duty to publish an imprint for the purpose of sending us any advertising material or informational materials that we have not expressly requested. The website owners expressly reserve the right to take legal action, should they still receive unsolicited advertising information, such as spam mails.

3. Data collection on our website

Cookies

The internet sites use so-called cookies in several places. Cookies do not damage your computer in any way and do not contain viruses. They help us to make our offer more user-friendly, more effective and safer. Cookies are small text files that are stored on your computer and are saved by your browser.

Most of the cookies we use are so-called session cookies. They are deleted automatically at the end of your visit. Other types of cookies remain saved on your terminal until you delete them. These cookies enable us to recognise your browser when visiting our website again.

You can change the settings in your browser so that you are informed when cookies are set and only accept cookies in individual cases, exclude the acceptance of cookies for certain cases or generally as well as the automatic deletion of cookies when closing the browser. When disabling cookies the functionality of the website could be restricted.

Cookies that are needed to carry out the electronic communication process or to provide certain functions requested by you (e.g. shopping bag function) are stored on the basis of Art. 6(1)(f) GDPR. The website owner has a legitimate interest in saving cookies for the technically faultless and optimised provision of his services. In so far as other cookies (e.g. cookies to analyse your surf behaviour) are stored, they are treated separately in this data protection statement.

Server log files

The provider of the pages processes and stores information automatically in so-called server log files that your browser transfers automatically to us. These include:

  • type and version of your browser
  • operating system you use
  • referrer URL
  • host name of accessing computer
  • time of server enquiry
  • IP address

This data is not combined with other data sources.

The collection of this data is carried out on the basis of Art. 6(1)(f) GDPR. The website owner has a legitimate interest in a technically faultless representation and the optimization of his website – therefore the server log files have to be collected.

Contact form

If you send us enquires via our contact form, your information from this form including the contact data you entered is saved in order to process your enquiry and in case of follow-up questions. We do not share this data without your consent.

The processing of the data you entered in the contact form is carried out on the basis of your consent (Art. 6(1)(1) GDPR). You may, at any time, revoke your consent. To do so it is sufficient to send us a notice without any specific form by e-mail. The legitimacy of data processing carried out to the point of revocation remains unaffected by the revocation.

The data you entered into the contact form remain with us until you request their deletion, revoke your consent to save the data or the purpose of data storage ceases to apply (e.g. after your request has been processed). Mandatory legal regulations – retention periods in particular – remain unaffected.

Enquiry by e-mail, phone or fax

If you contact us by e-mail, phone or fax, your enquiry including all personal data you enter (name, enquiry) are stored and processed for the purpose of processing your enquiry. We do not share this data without your consent.

The processing of these data is carried out on the basis of Art. 6(1)(b) GDPR provided that your enquiry is related to the execution of a contract or is necessary to carry out pre-contractual measures. In every other case the processing is based on your consent (Art. 6(1)(a) GDPR) and/or on our legitimate interests (Art. 6(1)(f) GDPR) as we have a legitimate interest in effectively processing the enquiries we receive.

The data you shared with us in contact enquiries remain with us until you request their deletion, revoke your consent to save the data or the purpose of data storage ceases to apply (e.g. after your request has been processed). Mandatory legal regulations – legal retention periods in particular – remain unaffected.

Data processing (customer and contract data)

We only collect, process and use personal data if necessary for the justification, content or amendment of the legal relationship (inventory data). The basis for this is Art. 6(1)(b) GDPR which allows the processing of data to execute a contract or pre-contractual measures. We only collect, process and use personal data of the utilization of our websites (usage data).

The customer data collected will be deleted after completing the order or terminating the business relationship. Legal retention periods remain unaffected.

4. Social media

Twitter plugin

On our pages we integrated functions of the social media platform Twitter. These functions are offered by Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. By using Twitter and the retweet function the websites you visited are connected with your Twitter account and are shared with other users. At the same time data are also transmitted to Twitter. We point out that as the website provider we do not know the content of the data transmitted or their usage by Twitter. For further information please see Twitter’s data protection statement under: twitter.com/de/privacy.

The usage of the Twitter plugin is based on Art. 6(1)(f) GDPR. The website owner has a legitimate interest in the highest visibility in social media possible.

You can change your data protection settings on Twitter in the account settings under: twitter.com/account/settings

5. Analysis tools and advertising

Google Analytics

This website uses functions of the web analysis service Google Analytics. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

Google Analytics uses so-called “cookies”. These are text files which are saved on your computer and enable an analysis of the website usage. The information generated by cookies about the website usage are normally transmitted to a Google server where they are saved.

The storage of Google Analytics cookies and the usage of these analysis tools are based on Art. 6(1)(f) GDPR. The website owner has a legitimate interest in the analysis of user behaviour in order to optimize his web service and his advertising.

IP anonymisation
The IP anonymisation on our website is active. In that way Google shortens your IP address within the member states of the EU and the contracting states of the Agreement on the European Economic Area before it is transmitted to the USA. Only in exceptional cases the full IP address is transmitted to a Google server in the USA where it is then shortened. On behalf of the website owner Google will use this information in order to evaluate the usage of the website, to compile reports about website activities and to provide other services towards the website owner related to the website and internet usage. The IP address transmitted by your browser as a part of Google Analytics is not merged with other Google data.

Browser Plugin
You can prevent the storage of cookies by setting the options in your browser software accordingly; in that case we point out that you might not be able to make full use of all the functions on this website. In addition you can prevent the collection of the data generated by the cookies and related to your usage of the website (including your IP address) as well as the processing of these data by Google by downloading and installing a browser plugin available under the following link: https://tools.google.com/dlpage/gaoptout?hl=de

Objection to data collection
You can prevent the collection of your data by Google Analytics by clicking on the following link. An opt-out cookie is then set that prevents the collection of your data for future visits of this website: Disable Google Analytics.

Further information on the handling of user data in Google Analytics can be found in Google’s data protection statement: .

Order processing
We concluded a contract with Google regarding the order processing and fully implement the strict regulations of the German data protection authorities when using Google Analytics.

Storage period
User and event-level data stored by Google and linked to cookies, user identifiers (e.g. User ID) or advertising IDs (e.g. DoubleClick cookies, advertising ID) are anonymized or deleted after 14 months. For further details please see: https://support.google.com/analytics/answer/7667196?hl=de

LinkedIn Insights Tag

The LinkedIn Insight Tag enables the collection of data regarding your visits to your website, including the URL, referrer, IP address, device and browser characteristics (User Agent), and timestamp. The IP addresses are truncated or (when used for reaching members across devices) hashed, and members’ direct identifiers are removed within seven days in order to make the data pseudonymous. This remaining pseudonymized data is then deleted within 180 days.

LinkedIn does not share the personal data with bancon, it only provides reports and alerts (which do not identify you) about the website audience and ad performance. LinkedIn also provides retargeting for website visitors, enabling bancon to show personalized ads off its website by using this data, but without identifying the LinkedIn member. LinkedIn use data that does not identify you to improve ad relevance and reach members across devices. LinkedIn members can control the use of their personal data for advertising purposes through their account settings.

6. Plugins and tools

Google Web Fonts

This website uses so-called web fonts provided by Google for the uniform representation of fonts. When accessing a website your browser downloads the required web fonts to the browser cache to represent texts and fonts correctly.

For this purpose, your browser needs to be connected to Google servers. In doing so Google becomes aware that our website has been accessed by your IP address. In using Google Web Fonts we want to present our online offers uniformly and attractively. This is a legitimate interest according to Art. 6(1)(f) GDPR.

If your browser does not support Web Fonts, your computer uses a standard font.

For further information on Google Web Fonts please see https://developers.google.com/fonts/faq or Google’s data protection statement under https://policies.google.com/privacy?hl=de

Google Maps

This website uses the map service Google Maps via an API. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

To use the functions of Google Maps it is necessary to save your IP address. This information is normally transmitted to a Google server in the USA where it is saved. The provider of this website has no influence on this data transmission whatsoever.

Google Maps is used in order to present our online offers in an attractive manner and to easily find the locations indicated on our website. This is a legitimate interest according to Art. 6(1)(f) GDPR.

Further information on the handling of user data can be found in Google’s data protection statement: https://policies.google.com/privacy?hl=de

Google Re-Captcha

We use Google reCAPTCHA (hereinafter reCAPTCHA) on our websites. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

With reCAPTCHA we want to verify if a human being or an automatic programme enters data on our website (e.g. in the contact form). For this purpose reCAPTCHA analyses the behaviour of visitors of our website by means of different characteristics. This analysis commences automatically as soon as the visitor enters our website. reCAPTCHA evaluates different types of information (e.g. IP address, how long a visitor stayed on our website or the number of movements of the mouse made by the user). Data collected as part of this analysis will be forwarded to Google.

The reCAPTCHA analyses run completely in the background. Website visitors are not informed that an analysis is taking place.

The data processing is based on Art. 6(1)(f) GDPR. The website owner has a legitimate interest in protecting his online offers from improper automated spying and from spam.

For further information on Google reCAPTCHA and Google’s data protection statement please see the following links: https://policies.google.com/privacy?hl=de and https://www.google.com/recaptcha/about/

7. Own services

Applications

We offer you the opportunity to apply for a job with us (e.g. by e-mail, post or online application form). In the following we inform you about the extent, purpose and usage of your personal data collected as part of the application process. We assure you that the collection, processing and use of your data are carried out in accordance with the applicable data protection law and other legal regulations and that we treat your data strictly confidential.

Extent and purpose of the data collection
If you send us an application, we process your personal data linked to that application (e.g. contact and communication data, application documents, notes during the job interview etc.) in so far as is necessary for the decision on the conclusion of an employment contract. The legal basis for this is Art. 26 amended version of the German Federal Data Protection Act (BDSG-neu) under German law (initiation of a placement), Art. 6(1)/b) GDPR (general initiation of contracts) and – provided that you have given your approval – Art. 6(1)(a) GDPR. Consent can be revoked at any time. Your personal data are only distributed within the company to those who are part of processing your application.

If your application is successful, the data you handed in are stored on the basis of Art. 26 BDSG-neu and Art. 6(1)(b) GDPR for the purpose of establishing employment in our data processing systems.

Storage period of data
If we cannot offer you a contract, you reject our job offer, you withdraw your application, you revoke your consent to data processing or request the deletion of your data, we will store the data you transmitted including remaining application documents for 6 months as a maximum after the end of the application process (retention period) in order to be able to understand the details of the application process in case of discrepancies (Art 6(1)(f) GDPR).

YOU CAN OBJECT TO THIS STORAGE IF YOU HAVE LEGITIMATE INTERESTS THAT PREVAIL OURS.

Has the retention period expired, the data will be erased, provided that there are no legal retention requirements or other legal ground for further storing your data. If it is evident that the retention of your data is necessary after the retention period has expired (e.g. due to a pending or threatening litigation), we will not erase your data unless they become invalid. Other legal retention requirements remain unaffected.

8. Third party links and services

Our Site contains links to third party websites and services. There are links from bancon-it.com pointing to different external websites including YouTube, LinkedIn, Xing, Twitter, Facebook and SAP.

Please remember that when you use a link to go from our Site to another website or you request a service from a third party, this Privacy Policy no longer applies.

Your browsing and interaction on any other websites, or your dealings with any other third party service provider, is subject to that website’s or third party service provider’s own rules and policies and you should contact the appropriate third party if you have any questions.

We do not monitor, control, or endorse the privacy practices of any third parties.

We encourage you to become familiar with the privacy practices of every website you visit or third party service provider that you deal with and to contact them if you have any questions about their respective privacy notices and practices.

This Privacy Notice applies solely to personal information collected by us through our Site and/or the supply of our products and services and does not apply to these third party websites and third party service providers.