Data Privacy Statement

Thank you for your interest in our company. Data privacy and protection is of great importance to the Management of Dorst Technologies GmbH & Co. KG.
By means of this data privacy statement we would like to inform you about the kind of personal data we collect, use and process as well as to what extent and for what purpose this is done.
Being the controller of the processing of personal data, Dorst Technologies GmbH & Co. KG has implemented numerous technical and organizational measures in order to ensure complete protection of the personal data processed via this website. However, there can always be safety deficiencies when it comes to Internet-based data transfer, which means that it is not possible to guarantee absolute protection. Therefore, it is up to you whether you want to use alternative ways such as phone to communicate personal data to us.

1. Name and Address of the Controller of the Processing of Personal Data
The controller according to Art. 4 No. 7 EU General Data Protection Regulation and other provisions concerning data protection is:

Dorst Technologies GmbH & Co. KG
Mittenwalder Str. 61
D-82431 Kochel am See
Phone: +49 (0)8851-188-0

Email: info(at)dorst.de

Website: www.dorst-technologies.com

2. Contact Details of the Data Protection Officer
For contact details of our data protection officer see below:

Dorst Technologies GmbH & Co. KG

Mittenwalder Str. 61

D-82431 Kochel am See
Phone: +49 (0)8851-188-0

Email: datenschutzbeauftragter(at)dorst.de

Website: www.dorst.de
You are welcome to contact our data protection officer directly if you have any questions or comments regarding data protection.

3. Cookies
The webpages of Dorst Technologies GmbH & Co. KG use cookies. Cookies are text files that are saved and stored on a computer system via a web browser.
Many cookies have a so-called cookie ID. This cookie ID is a unique identifier. It is a string of characters by means of which it is possible to associate websites and servers with the browser on which the cookie is stored. This allows us to distinguish your individual browser from other web browsers that store different cookies and to recognize and identify each browser by its unique cookie ID.
By using cookies, Dorst Technologies GmbH & Co. KG is able to provide services that are more user-friendly, which would not be possible without using cookies.
Cookies help us to optimize information and offers on our website for our users. The purpose of our cookies is to make using our website easier for you. For example, you will not have to enter your login details each time when visiting our website since our website and the cookie stored on your computer system will do this for you.
You always have the option of keeping our website from placing cookies by changing the corresponding settings of your web browser and thus permanently rejecting the use of cookies. In addition, it is also possible to delete cookies that have already been stored via a web browser or other software programs. This is possible in all common web browsers. If you deactivate the use of cookies in the web browser you use, you might not be able to use all functions of our website to their full extent.

Use of cookies:
This website uses the following kinds of cookies; their scope as well as the way they work shall be explained in the following:
PHPSESSID, navigationTree:
This cookie will assign an anonymized ID (Session ID) to your device for the time of your visit in order to pool several related server inquiries and to be able to assign them to a certain session.
This cookie is essential for websites and their functions to work properly. Without this cookie, it would not be possible to provide services such as the use of CMS.

_gid, _ga, _gat:
With these cookies, it is possible to improve the conveniences and performances of websites and to provide various functions. They store information about how visitors use the website.

_gid:
This cookie is used to distinguish between users.
The cookie expires after 24 hours.

_ga:
This cookie is used to distinguish between users.
The cookie expires after two years.

_gat:
This cookie is used to reduce the request rate.
The cookie expires after 1 minute.

4. Collection of Personal Data during Your Visit of Our Website
If you only use our website for information i.e. if you do not register or use other ways to communicate personal information, we will only collect the personal data your browser is sending to our server.
If you want to look at our website, we will collect the data that is technically necessary for us to display our website for you and to guarantee stability and safety (legal basis for this is Art. 6 Sect. 1 sentence 1 lit. f GDPR). The following data will be collected:
- the browser types and versions used,
- the operating system used by the accessing system,
- the website from which an accessing system is referred to our website (so-called referrers),
- the sub sites that are accessed on our website via an accessing system,
- the date and time of access to the website,
- an Internet Protocol address (IP address),
- the Internet Service Provider of the accessing system and
- other similar data and information that help to avert dangers in case of attacks on our information technology systems.
Apart from a purely informational use of our website, we also offer various services that you can use if you are interested. For this, you are usually required to enter further personal data that we use to perform the respective services. The aforementioned principles regarding data processing apply to said data.

5. Virtual meetings (video conferences)
Dorst Technologies GmbH & Co.KG organizes web conferences for the virtualization of work group meetings or meetings, in which the voice of the participants is transmitted via microphone and, if necessary, their image is also transmitted via webcam to all other participants (hereinafter: "video conferences").
For this purpose, Dorst Technologies GmbH & Co.KG uses service providers who make their software and, if applicable, their technology available to Dorst Technologies GmbH & Co.KG (hereinafter: video conferencing systems). Dorst Technologies GmbH & Co.KG has agreed on commissioned processing with these service providers pursuant to Art. 28 DSGVO.
a) Processing of data in the context of videoconferences by Dorst Technologies GmbH & Co.KG.
In order to use "video conferencing", we need to process various types of data. The total volume of data processed in the context of videoconferences depends on the functional scope of the videoconferencing system provided by the videoconferencing service provider, i.e. what data the respective user provides before, during and after participating in a "videoconference".

The following personal data may in principle be the subject of processing for the purpose of conducting a video conference:

  • Information about the user himself
  • Meeting metadata
  • Text, audio, video and other multimedia data.

b) Legal basis of the data processing
In the case of other videoconferences and if there are no (work) contractual
(work) contractual relationships exist, our implementation of video conferences is based on the legal basis Art. 6 (1) lit. f) DS-GVO. Here, too, our legitimate interest is in the effective implementation of "video conferences" vis-à-vis third parties, members, interested parties and non-members.

c) Storage of data
A recording of "video conferences" as well as the image and/or sound data streams takes place in exceptional cases. The recording will be pointed out by the meeting organizer and the consent of the meeting participants will be obtained.


d) Recipients of the data
Personal data processed in connection with participation in "video conferences" will in principle only be passed on to our order processors, i.e. the service providers who support us in carrying out the video conferences.

Apart from this, data is only passed on to third parties if Dorst Technologies GmbH & Co.KG is legally obliged to do so (e.g. by court order), or if the data subjects have expressly consented to the transfer of their data.

If we use the video conferencing software "Microsoft Teams", please also note the following information:

    "Microsoft Teams" is a service of Microsoft Corporation:

   
        Microsoft Corporation
        One Microsoft Way
        Remond, WA 98052-6399
        USA
        (https://teams.microsoft.com/)

a) Necessary consent to the data protection and terms of use vis-à-vis "Microsoft" and "Microsoft Teams

The use of MS-Teams is generally subject to the terms of use and data protection of "Microsoft", over which Dorst Technologies GmbH & Co.KG itself has no influence. In order to use MS-Teams, Dorst Technologies GmbH & Co.KG must accept the terms of use and data protection provisions of "Microsoft", otherwise MS-Teams cannot be used.

Privacy policy: www.microsoft.com/en-us/microsoft-365/microsoft-teams/download-app and privacy.microsoft.com/de-de/privacystatement

Terms of use: www.microsoft.com/de-de/servicesagreement/

Microsoft Corporation, as the provider of MS-Teams, receives knowledge of the above-mentioned data insofar as this is provided for in our order processing agreement with MS-Teams.

b) Further information on data protection at Microsoft Corporation and MS-Teams

Please refer to Microsoft's data protection notice at privacy.microsoft.com/de-de/privacystatement there under the section "Online services for companies";

As well as: www.microsoft.com/de-de/trust-center/privacy/customer-data-definitions

6. Possibility to Contact Us Via Our Website
Due to statutory provisions, the website of Dorst Technologies GmbH & Co. KG contains information that enables quick electronic contact with our company as well as direct communication with us. If you contact us via email or by using a contact form, the personal data communicated by you will automatically be stored. Your personal data will not be passed on to third parties.

7. Routine Deletion and Locking of Personal Data
The controller shall only process and store your personal data for the time necessary to fulfil the purpose of storing the data or in case this is prescribed by laws or regulations the controller is subject to.
If the storage purpose ceases to exist or a prescribed storage period has expired, the personal data shall be locked and deleted on a routine basis and according to the statutory provisions.

8. Your Rights
a)  Right to obtain confirmation
b)  Right of access
c)  Right to rectification
d)  Right to erasure (Right to be forgotten)
e)  Right to restriction of processing
f)   Right to data portability
g)  Right to object
h)  Automated individual decision-making, including profiling
i)   Right to withdraw a privacy consent. Such withdrawal will have an impact on the admissibility of processing your personal data once you have issued it.

You further have the right to complain to a data protection authority about our processing of your personal data.
Insofar as we base the handling of your data on the weighing of interests, you can file an objection against the processing. This is the case if the processing is in particular not necessary for the fulfilment of a contract between you and us. If you file such an objection, we would ask you to tell us why we should not process your personal data in the way we did. In case your objection is justified, we will examine the situation and either stop or adapt the processing of data or present you with the compelling and legitimate grounds for which we will continue the processing.

9. Data Protection Regarding Applications and Application Procedures
The controller shall collect and process the personal data of applicants for the purpose of conducting the application procedure. Processing can also take place by electronic means. This happens notably when an applicant sends his application documents to the controller by electronic means e.g. via email or a web form that can be found on the website. If the controller enters into an employment contract with the applicant, the communicated data shall be stored for the purpose of the employment relationship with due regard to the statutory provisions. If the controller does not enter into an employment contract with the applicant, the application documents shall be deleted automatically six months after rejection of the application provided that the controller does not have any other legitimate interests that interfere with the deletion of said data. Other legitimate interests are, in this sense, e.g. the burden of proof in proceedings under the German General Act on Equal Treatment (Allgemeines Gleichbehandlungsgesetz, AGG).

10. Legitimate Interests in the Processing Pursued by the Controller or By a Third Party

If the processing of personal data is based on Art. 6 Sect. 1 lit. f GDPR, it will be our legitimate interest to conduct our business activities in favor of the welfare of all of our employees and shareholders.

11. Period for Which the Personal Data Will Be Stored

The criteria used to determine the period for storing personal data is the respective statutory safekeeping period. Once this period has expired, the corresponding data shall be deleted on a routine basis provided that such data will not be necessary for the fulfilment or initiation of a contract anymore.

12. Statutory or Contractual Provisions Requiring the Provision of Personal Data; Requirement for Entering Into a Contract; Obligation of the Data Subject to Provide the Personal Data; Possible Consequences of Failure to Provide Such Data
We inform you that the provision of personal data is, to some extent, prescribed by law (e.g. tax regulations) or may result from contractual arrangements (e.g. information concerning the contracting party). At times, it may be necessary for the conclusion of a contract to provide us with personal data that we need to process subsequently. You are for instance obliged to provide us with your personal data if our company enters into a contract with you. Failure to provide such personal data would result in the impossibility to enter into a contract with you. Before providing us with your personal data, you are welcome to contact our data protection officer.
Our data protection officer will inform you individually whether the provision of your personal data is a statutory or contractual requirement or a requirement necessary to enter into a contract, whether you are obliged to provide your personal data and what would be the consequences if you failed to provide such data.
Sometimes we use external service providers for the processing of your data. Said service providers have been selected and commissioned with care, are bound to follow our instructions and are subject to regular control.

13. No Automated Decision-Making
Being aware of our responsibilities as a company, we abstain from automated decision-making and profiling