Data protection declaration

This data protection declaration clarifies the type, scope and purpose of the processing of your personal data (“data” in the following) when visiting this website and your rights in this regard.

Controller

The controller as defined in the General Data Protection Regulation, Art. 4 (7) GDPR, other data protection laws applicable in the member states of the European Union and other data protection-related provisions is:

Hanns Loersch GmbH & Co. KG

represented by the personally liable partner
Hanns Loersch Verwaltungsgesellschaft mbH

Managing directors
Dipl.-Ing. Hanns Loersch
Dipl.-Wirt. Ing. Marc Loersch

An der Bleiche 49
47638 Straelen, Germany
E-mail: info@airworks.de

Data protection officer

We have appointed a data protection officer for our company. You can reach our data protection officer at:

Hanns Loersch GmbH & Co. KG
Dipl.-Wirt. Ing. Marc Loersch
An der Bleiche 49
47638 Straelen, Germany

Telephone: + 49 28 34 – 91 31 0
E-mail: info@airworks.de

Objection to or withdrawal of your consent to data processing

If you have given your consent to processing of your data, you can withdraw it at any time. Such withdrawal will affect the permissibility of processing of your personal data after you have expressed it to us. The permissibility of processing your data up to the point of your withdrawal remains unaffected.

If we support the processing of your personal data on balance of interests, you may raise an objection against such processing. This is the case if the processing is not necessary in particular for the fulfilment of a contract with you, which we describe in the following description of the functions. In the event that such an objection is raised, we ask you to explain the reasons why we may not process your personal data the way we do. Should you raise an objection, we will examine the circumstances and either cease or alter data processing or inform you of the compelling and legitimate reasons why we will continue to process them.

Of course, you can object to the processing of your personal data for the purpose of advertisement and data analysis at any time. The best way to express your objection to advertising is to use the contact information provided above.

 

Terms and definitions

Our data protection declaration is based on terms used by the European issuers of guidelines and ordinances when issuing the General Data Protection Regulation (GDPR). Our data protection declaration is intended to be easy to read and understand both for the public and our customers.

To ensure this, we would like to explain the terms used in advance. The terms used and their “processing” are defined in Art. 4 of the General Data Protection Regulation (GDPR).

We use the following terms in this data protection declaration, among others:

Personal data (Art. 4 (1) of the GDPR)

“Personal data” are all information referring to an identified or identifiable natural person (“data subject” in the following); a natural person is considered to be identifiable, directly or indirectly, in particular through assignment to an identifier such as a name, an identification number, location information, an online identifier or one or more specific characteristics which are an expression of the physical, physiological, genetic, mental, economic, cultural or social identity of said natural person.

Data subject (Art. 4 (1) of the GDPR)

“Data subject” is any identified or identifiable natural person whose personal data are processed by the party responsible for processing.

Processing (Art. 4 No. 2 of the GDPR)

“Processing” is any process carried out with or without the aid of automated procedures or any such series of procedures in connection with personal data, such as collection, capture, organisation, arrangement, storage, alteration or modification, reading, querying, use, disclosure through transmission, distribution or another form of provision, comparison or linking, limitation, deletion or destruction.

Profiling (Art. 4 (4) of the GDPR)

“Profiling” is any type of automated processing of personal data where such data are used to evaluate certain personal aspects related to a natural person, in particular to analyse or predict aspects regarding work performance, economic position, health, personal preferences, interests, reliability, behaviour, location or change in location of this natural person.

Pseudonymisation (Art. 4 No. 5 of the GDPR)

“Pseudonymisation” is the processing of personal data in such a way that such data can no longer be associated with a specific data subject without using additional information if this additional information is saved separately and is subject to technical and organisational measures which ensure that the personal data are not associated with an identified or identifiable natural person.

Filing system (Art. 4 (6) of the GDPR)

A “filing system” is any structured set of personal data accessible according to specific criteria, whether centralised, decentralised or dispersed on a functional or geographical basis.

Controller (Art. 4 No. 7 of the GDPR)

The “controller” is the natural or legal person, authority, establishment or other body which, either alone or together with others, makes decisions regarding the purposes and means of processing personal data. Should the purposes and means of this processing be stipulated by European Union law or the laws of the member states, the controller or the specific criteria for their nomination may be provided for by Union or member state law;

Consent (Art. 4 No. 11 of the GDPR)

“Consent” of the data subject is any voluntarily submitted statement of intention for the specific case in an informed way and without ambiguity in the form of a declaration or other clearly affirmative act with which the data subject signifies that they agree to the processing of the personal data relating to them.

What is the legal basis for our processing of your data?

Firstly, we inform you of the legal bases of our data processing as per Art. 13 No. 1 c of the GDPR in the following.

By law, any processing of personal data is in principle prohibited and only permissible if the data processing falls under one of the following justifiable cases:

  • 6 (1) Sent. 1 a of the GDPR (“Consent”): If the data subject voluntarily, in an informed way and without ambiguity through a declaration or other clearly affirmative act has signified that they agree to the processing of personal data related to them for one or more specific purposes. If processing occurs based on your consent, you can withdraw it at any time with effect for the future. You can submit your withdrawal by post to the address specified above or by e-mail to the e-mail address specified above;
  • 6 (1) Sent. 1 b of the GDPR: If processing is required for the fulfilment of a contract to which the data subject is a contractual party or for the performance of precontractual measures carried out upon the request of the data subject;
  • 6 (1) Sent. 1 c of the GDPR: If processing is required for the fulfilment of a legal obligation to which the controller is subject (e.g. a legal retention obligation);
  • 6 (1) Sent. 1 d of the GDPR: If processing is required for the protection of vital interests of the data subject or another natural person;
  • 6 (1) Sent. 1 e of the GDPR: If processing is required for the administration of a task in the public interest or for the exercising of official authority conveyed to the controller or
  • 6 (1) Sent. 1 f of the GDPR (“legitimate interests”): If processing is required for the protection of legitimate (legal or economic in particular) interests of the controller or a third party, as long as they do not outweigh the opposing interests or rights of the data subject (in particular when a minor person is involved).

Should we disclose data to other persons and companies (order processors or third parties) as part of our data processing, transmit data to them or otherwise grant access to the data to them, this occurs solely based on legal permission (e.g. if the transmission of the data to third parties, such as a payment service provider, is required as per Art. 6 (1) b of the GDPR for the fulfilment of a contract), if you have consented, if a legal obligation stipulates such or based on our legitimate interests (e.g. for the use of agents, web hosts etc.) as per Art. 6 (1) c of the GDPR.

Should we commission third parties with the processing of data, this occurs based on Art. 28 of the GDPR (so-called “use of processors”).

What data are processed?

Personal data

When using our website for informational purposes only, that is, if you do not register or send us information otherwise, we only collect the personal data which your browser sends to our server. If you wish to view our website, we collect the following data required by us for technical reasons in order to display our website to you and to ensure stability and security (the legal basis here is Art. 6 (1) Sent. 1 f of the GDPR):

  • IP address
  • Date and time of the request
  • Content of the request (specific website)
  • Access status/HTTP status code
  • Respective data volume transmitted
  • Website from which the request is coming
  • Browser
  • Operating system and its interface
  • Language and version of the browser software.

 

Cookies

In addition to the data named above, cookies are saved on your computer when you use our website. Cookies are small text files that are stored on your hard drive assigned to the browser you are using and through which certain information flows to the place that sets the cookie (in this case, to us). Cookies cannot execute programs or transfer viruses to your computer. They are used to make our Internet presence more user friendly and efficient overall.

This website uses the following types of cookies, whose scope and function are explained in the following:

  • Transient cookies

Transient cookies are deleted automatically when you close your browser. This includes session cookies, in particular. These cookies save a so-called session ID, with which various different requests by your browser can be assigned to the shared session. In this way, your computer can be recognized again when you return to our website. Session cookies are deleted when you log out or close the browser.

  • Persistent cookies

Persistent cookies are automatically deleted after a specified duration, which may differ depending on the cookie. You can delete the cookies in the security settings of your browser at any time.

You can configure your browser setting according to your preferences and reject the acceptance of third-party cookies or all cookies, for example. We would like to point out that you may not be able to use all the functions of this website.

 

Leadinfo

We use the lead generation service Leadinfo B.V. in Rotterdam, Netherlands. This service recognises visits from companies to our website using IP addresses and shows us corresponding publicly available information such as company names and addresses. Leadinfo also uses two first-party cookies for evaluation of user behaviour on our website and processes domains from form input (e.g. “leadinfo.com”) to correlate IP addresses with companies and improve services. We process your data with the help of Leadinfo for the purpose of optimising our website and for marketing purposes based on our legitimate interest as per Art. 6 (1) f of the GDPR.

We are not able to influence the specific duration of retention of the processed data, as this is determined by Leadinfo B.V. More information can be found in the Leadinfo privacy statement: https://www.leadinfo.com/en/legal/privacy/. You can opt out at this website: www.leadinfo.com/en/opt-out.

Facebook Pixel and Google Tag

Our website uses Facebook Pixel and Google Tag, which have been integrated by Hanns Loersch GmbH & Co. KG have been integrated. These tools enable us to measure and optimise the effectiveness of our advertising measures on Facebook and Google. By using the Facebook Pixel and the Google Tag, cookies are set on your end device, which enable us to track your activities on our website and collect anonymised usage data. This data may be transmitted to Facebook and Google, where it is stored and processed. We would like to point out that we have no influence on the scope and further use of the data by Facebook and Google. Further information on data processing by Facebook can be found in Facebook’s data policy https://www.facebook.com/policy.php, and on data processing by Google in Google’s privacy policyhttps://policies.google.com/privacy?hl=de .

If you wish to object to the use of the Facebook pixel and/or the Google tag, you can do so via the corresponding settings in your browser or use the opt-out options provided by Facebook and Google.

Analysis tools and third-party tools

When you visit this website, your web surfing behaviour can be evaluated statistically. This primarily occurs with the use of so-called analysis programmes.

Google Analytics

Our website uses Google Analytics for the needs-based design and improvement of the website. Google Analytics uses so-called cookies, which are saved on your end device and which enable an analysis of how you use the website. The information generated by the cookie is generally transmitted to a Google server in the USA and saved there. On this website, we use the IP anonymisation extension (so-called IP masking), i.e. your IP address is truncated by Google within the member states of the European Union or in other states party to the Agreement on the European Economic Area. Only in exceptional cases is the entire IP address transmitted to a Google server in the USA and truncated there.

Commissioned by the owner of this website, Google will use this information to evaluate your use of the website, compile reports on website activities and provide additional services associated with website use and Internet use to the website owner. The legal basis for data processing is the legitimate interest as per Art. 6 (1) f of the GDPR.

The services of Google also include reports on the effectiveness of our advertising activities (also across devices), the demographic data and interests of our users and the cross-device functions for the delivery of online advertising, if you have a Google account, and personalised advertising (“personalised ads” in the following). In this case, the legal basis for data processing is the consent you have given to Google (Art. 6 (1) a of the GDPR).

You may object to the collection and evaluation of your data by Google Analytics by downloading and installing the browser plug-in available at the following link: https://tools.google.com/dlpage/gaoptout. More information on the Google Analytics conditions is available at http://www.google.com/analytics/terms/.

Making contact

In addition to the purely informational use of our website, we offer a contact form which you can use if you are interest in our products. To do so, you must enter personal data such as your first name, surname, e-mail address and the matter you wish to contact us about, which we will use to provide the respective service or to process your request and contact you and which are subject to the previously named principles for data processing.

When you contact us (e.g. via contact form, e-mail or telephone), the information of the user is processed in order to respond to the contact request and process it as per Art. 6 (1) b of the GDPR.

We delete such requests if they are no longer required. We assess the necessity every two years; moreover, the legally applicable archiving obligations also apply.

Applications

Should you apply with us for a position and send application documents to us for this purpose, we will only process the personal data sent in this context for the purposes of the application process.

Should you have applied for an advertised position, the documents will be deleted automatically six months after the application process is completed if such deletion does not conflict with any legitimate interests. In the case of an application without reference to an advertised position (unsolicited application), the application will be retained for a period of up to one year so that we may contact you with regard to a vacancy advertised during this period of time. You may request that your application be deleted at any time, including prior to the expiration of the designated storage period. Should your application result in a position at the company, the transmitted data will be saved for the purpose of establishing the employment relationship under consideration of the legally applicable provisions.

Should we process your data in order to make a decision on establishing an employment relationship, the legal basis for this is Art. 26 (1) Sent. 1 of the German Federal Data Protection Act.

In all other cases, the legal basis for saving your application data is your consent as per Art. 6 (1) a of the GDPR.

What rights do I have as a data subject?

If your personal data are processed, you are a data subject as per the GDPR and you have the following rights vis-a-vis the controller:

  • as per Art. 15 of the GDPR, the right to be informed of what information about you we have saved or processed
  • as per Art. 16 of the GDPR, the right to correction or, as per Art. 17 of the GDPR, the right to deletion of your data
  • as per Art. 18 of the GDPR, the right to request that the processing of your data be restricted
  • as per Art. 21 of the GDPR, the right to raise an objection to the processing of your data
  • as per Art. 20 of the GDPR, the right to demand the transferability of your data
  • as per Art. 22 of the GDPR, the right to submit a complaint to the data protection supervisory authority. Your responsible supervisory authority is that of your place of residence.

A list of supervisory authorities in Germany is available here:

https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.

 

Our presence in the social media

(1) We are present on various social media platforms. We maintain social media appearances with the following providers:

  • Facebook, Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland, https://en-gb.facebook.com/privacy/policy.
  • Instagram, Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland, https://instagram.com/about/legal/privacy/.
  • YouTube, service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, https://policies.google.com/privacy.
  • LinkedIn, LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA, https://www.linkedin.com/legal/privacy-policy.

(2) For these information services, we use the technical platform and services of the provider. We would like to point out that any use of our presence on social media platforms and their functions occurs at your own risk. This applies in particular for the use of interactive functions (e.g. commenting, sharing and rating). When visiting our presence on social media, the providers of the social media platforms collect, among other things, your IP address and other information available in the form of cookies on your end device. This information is used to provide as the owner of the accounts with statistical information on the interaction with us.

(3) The data about you collected in this way are processed by the platforms and may be transmitted to countries outside the European Union, in particular the USA. Should personal data be transmitted to recipients in third countries (outside the EEA), this occurs based on the corresponding adequacy decisions of the EU Commission, Art. 45 of the GDPR, or there are suitable guarantees for the protection of your personal data as per the legal requirements as defined by Art. 46 of the GDPR (EU standard contract clauses). According to their own declarations, all the providers named above maintain an adequate level of data protection corresponding to the EU-U.S. Data Privacy Framework. We do not know how the social media platforms use the data from your visit to our account and interaction with our posts for their own purposes, how long the data are saved or whether they are passed on to third parties. Data processing may differ, depending on whether you are registered with, and logged in to, the social media network or if you visit the website as an unregistered user and/or as a user who is not logged in. When accessing a post or the account, the IP address assigned to your end device will be transmitted to the provider of the social media platform. If you are logged in as a user, your movement on the network can be traced via a cookie on your end device. Using buttons integrated into websites, it is possible for platforms to record your visits to these websites and connect them with your respective profile. Using this data, they can provide you with content or advertisements tailored to you. If you wish to prevent this, you should log out and deactivate the “Stay logged in” function, delete the cookies present on your device and restart your browser.

(4) We as the provider of the information service also only process the data from your use of our service which you provide to us and which require interaction. If, for example, you ask us a question which we can only answer via e-mail, we will save your information according to the general principles of our data processing which we describe in this data protection declaration. The legal basis for processing your data on the social media platform is Art. 6 (1) Sent. 1 f of the GDPR.

(5) To exercise your rights as a data subject, you can contact both us and the provider of the social media platform. Should a party not be responsible for replying or should it be necessary to obtain the information from the other party, either we or the provider will then pass your request on to the respective partner. Should you have any questions on the profiling or processing of your data when using the website, contact the owner of the social media platform directly. Should you have any questions on the processing of your interaction with us on our website, write to the contact address we provided above.

(6) The information received by the social media platform and how it is used are described by the provider in their data protection declarations (see above for link). You will also find information on contact options and the setting options for advertisements there.

 

Plug-ins

YouTube

Our website uses plug-ins of the YouTube website. The owner of the website is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. We use YouTube in extended data protection mode. According to YouTube, this mode means that YouTube does not store information on the users of this website before they view the video. However, the extended data protection mode does not necessarily rule out the forwarding of data to YouTube partners. Regardless of whether or not you are watching a video, YouTube establishes a connection to the Google DoubleClick network.

As soon as you start a YouTube video on our website, a connection is established to the YouTube servers. In the process, the YouTube server is informed of which of our pages you visited. If you are logged in to your YouTube account, you enable YouTube to connect your surfing behaviour directly to your personal profile. You can prevent this by logging out of your YouTube account.

In addition, YouTube may save various cookies on your end device after starting a video. Using these cookies, YouTube can receive information on visitors of our website. This information is used to record video statistics, improve user friendliness and prevent attempts at fraudulent activities, among other things. The cookies remain on your end device until you delete them. Additional data processing procedures may be initiated after starting a YouTube video; we have no influence over such procedures.

YouTube is used in the interest of making our online presence attractive. This represents a legitimate interest as per Art. 6 (1) f of the GDPR.

More information on data protection at YouTube can be found in their data protection declaration at: https://policies.google.com/privacy?hl=gb

 

Google Maps

This website uses the map service Google Maps via an API. This is provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. To use the functions of Google Maps, your IP address must be saved. This information is generally transmitted to a Google server in the USA and saved there. The provider of this website has no influence over this data transfer. The use of Google Maps occurs in the interest of an attractive presentation of our online presence and to easily find locations we reference on the website. This represents a legitimate interest as per Art. 6 (1) f of the GDPR.

More information on the handling of user data can be found in the Google data protection declaration: https://policies.google.com/privacy?hl=gb.

How long are your data saved?

The data we process are deleted or their processing is restricted in accordance with Art. 17 and 18 of the GDPR. As soon as the data are no longer required for their intended purpose and deletion is not contradicted by any legal retention obligations, we delete the data we have saved. If the data are not deleted because they are required for other, legally permissible purposes, their processing is restricted. This means that the data are blocked and not processed for other purposes. This applies for data which must be retained for commercial-law or tax-law reasons, for example. According to legal provisions in Germany, retention occurs in particular for 6 years as per Art. 257 Par. 1 of the German Commercial Code (HGB) and for 10 years as per Art. 147 Par. 1 of the German Tax Code (AO).

SSL/TLS encryption

For security reasons and to protect the transmission of confidential content, such as posts, photos and requests via the contact form which you send to us as the website owner, we use SSL/TLS encryption. An encrypted connection can be identified by the fact that the address line of the browser switches from “http://” to “https://” and by the lock symbol on the browser line.

When SSL/TLS encryption is activated, the data you transmit to us cannot be read by third parties.

Last revised: July 2024