DATA PROTECTION
PRIVACY POLICY
Thank you for your interest in our website http://sa-g.de (hereinafter "Website"). We respect your privacy and take the protection of your personal data very seriously. We therefore collect and process your personal data solely in accordance with the relevant statutory provisions, in particular the European General Data Protection Regulation (GDPR), the German Federal Data Protection Act (BDSG) and the German Telecommunication Digital Services Data Protection Act (TDDDG).
This Privacy Policy explains what types of personal data we collect when you visit our Website and how we process it.
1. DATA CONTROLLER
The data controller (Art. 4 no. 7 GDPR) is:
SA.G Group GmbH
Berliner Str. 116, D-63065 Offenbach
Telefon +49 (0) 69 - 96 37 66 81 9
E-Mail info@my-sag.de
2. What is personal data?
Personal data (Art. 4 no. 1 GDPR) is all information that can be directly or indirectly attributed to you as an individual. This includes, for example, your name, your address, your phone number or your email address. Non-personal data, in contrast, is information of a general nature that cannot be used to determine your identity (e.g. the number of users of our Website).
3. Collection and processing of personal data, object, purposes and legal bases of data processing
You can visit our Website, which is primarily for information purposes, without providing us with data that directly identifies you. In the following, we would like to provide you with more detailed information about when we process your personal data, what personal data this is in detail, for what purposes we process your personal data and on what legal basis this is done.
3.1 Server log files (including IP address)
Purpose and scope of data processing
When you visit our Website, our web server automatically records your log data, which your browser automatically transmits to us, for technical reasons. This is usually your IP address, the date and time you visited our Website, the subsites you visited on our Website, the website you visited previously, the browser you are using (e.g. Mozilla Firefox or Google Chrome), the operating system you are using (e.g. Windows 11) and the domain name and address of your internet provider (e.g. Deutsche Telekom or 1&1).
Purposes and legal basis of data processing
The processing of your log data is technically necessary to enable communication with our web server and to provide you with our Website. We also process this data to ensure – as far as technically possible and reasonable – the integrity, stability and functionality of our Website and to ward off attempted attacks. The processing of this data is necessary to safeguard our legitimate interests in the provision and technical integrity of our Website (Art. 6 para. 1 lit. f GDPR). Without the provision of this data, it is not technically possible to use our Website.
In addition, we may process the information collected by our web server in the event of system misuse in cooperation with your internet provider and/or local authorities in order to identify the perpetrator of this misuse. The legal basis for this is our legitimate interests (Art. 6 para. 1 lit. f GDPR), which consist of protecting the integrity of our Website, our system and the visitors to our Website.
3.2 Personal data that you provide to us voluntarily
Our Website is primarily of an informational nature and serves to give you the opportunity to find out about our products and services.
Purpose and scope of data processing
We only collect personal data from you if you have provided it to us voluntarily. For example, we collect your email address and any other information and content provided by you as part of a request you send us by email, which you can also initiate via our "Contact" subsite.
Purposes and legal basis
We process this personal data in order to answer and process your request. The legal basis for this is the fulfillment of pre-contractual measures in response to your request (Art. 6 para. 1 lit. b GDPR). In the case of an application inquiry, the legal basis is Art. 88 GDPR in conjunction with Sec. 26 para. 1 BDSG.
3.3 Cookies and similar technologies
We use cookies and similar technologies to process personal data on our Website to better understand how users interact with our Website, improve its functionality, and for marketing and research purposes.
Definition of Cookies: Cookies are text files that our web server sends to your computer and stores there when you visit our Website. We use both session cookies (deleted when you leave the Website) and persistent cookies (remain on your device until manually deleted).
Cookie Types
-
Functional Cookies: Remember user preferences (e.g., language or region) to personalize the experience.
-
Analytics Cookies: Provide insights into user behavior (e.g., session duration, pages visited).
-
Targeting/Advertising Cookies: Deliver relevant content and track ad effectiveness.
The use of non-essential cookies is based on your freely given and revocable consent (Art. 6 Para. 1(a) GDPR; Section 25 Para. 1 TTDSG).
3.4 EXTERNAL LINKS
Our Website may include links to external websites (e.g., Google Maps). This Privacy Policy does not apply to data processing by the operators of linked sites. Please refer to their privacy notices. For our corporate profiles on LinkedIn and Instagram, data is processed in accordance with the privacy policies of LinkedIn Ireland Unlimited Company and Meta Platforms Ireland Ltd., respectively.
If you want to avoid this, you should log out of Facebook or deactivate the "stay logged in" function, delete the cookies on your device and close and restart your browser. In this way, Facebook information that can be used to directly identify you will be deleted. This allows you to use our company presence on Facebook without revealing your Facebook ID. If you access interactive functions on the site ("like", comment, share or message etc.), a Facebook login screen will appear. After logging in, you will again be recognizable to Meta as a specific Facebook user. Alternatively, you can use a different browser than usual to visit our company presence on Facebook.
4. TRANSFER OF PERSONAL DATA
4.1 We will not transfer your personal data to third parties unless this is necessary for the use of our Website (Art. 6 para. 1 lit. b GDPR), you have consented to the transfer (Art. 6 para. 1 lit. a GDPR) or the transfer is permitted on the basis of relevant legal provisions.
4.2 We are entitled to outsource the processing of your personal data in whole or in part to external service providers who work for us as data processors (Art. 4 no. 8 GDPR) within the framework of data protection regulations. In particular, external service providers are engaged in the provision, hosting, operation, support and maintenance of our Website. The service providers commissioned by us process your data solely in accordance with our instructions within the framework of an data processing agreement (Art. 28 GDPR). We remain responsible for the protection of your data, which is ensured by strict contractual regulations, technical and organizational measures and additional controls by us.
4.3 Personal data may also be processed in other ways and also disclosed to third parties if we are obliged to do so by law (e.g. by court order or to fulfill legal obligations) (Art. 6 para. 1 lit. c GDPR) or if this is necessary to support criminal or legal investigations or other legal investigations or proceedings at home or abroad.
5. Data transfer to third countries (outside the EU/EEA)
Data processing on our Website takes place within the European Union (EU) or European Economic Area (EEA). Data processing outside the EU or the EEA only takes place if the special provisions of Art. 44 et seq. GDPR are met in order to ensure an adequate level of data protection. We provide for an appropriate level of data protection on the basis of an adequacy decision by the European Commission (Art. 45 GDPR) and/or by concluding EU standard contractual clauses (Art. 46 para. 2 lit. c and d in conjunction with Art. 47 GDPR). In the case of the conclusion of EU standard contractual clauses, we will provide you with a copy of the concluded EU standard contractual clauses upon request.
6. Storage duration
Your personal data will only be stored by us for as long as is necessary to achieve the respective purpose or – if there are additional statutory retention periods (e.g. in the German Commercial Code and the German Fiscal Code) – for the duration of the statutory retention period.
With regard to the storage duration of cookies, please see the information in Section 3.3.
7. Your data protection rights
In accordance with the applicable data protection law, you are entitled to the rights listed below in particular in accordance with the legal requirements. To assert your data protection rights, you can contact us at any time using the contact details listed in Section 1.
7.1 Right to object (Art. 21 GDPR)
You have the right to object, on grounds relating to your particular situation, at any time to processing of your personal data which is based on legitimate interests (Art. 6 para. 1 lit. f GDPR). We will not process your personal data following an objection unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or the processing serves the establishment, exercise or defense of legal claims (see Art. 21 para. 1 GDPR). In this case, you must provide reasons for the objection that arise from your particular situation.
7.2 Right of access, rectification, erasure and restriction (Art. 15 et seq. GDPR)
You have the right to request information about your personal data stored by us at any time. When we process your personal data, we endeavor to take appropriate measures to ensure that your personal data is correct and up-to-date for the purposes for which it was collected. In the event that your personal data is incorrect or incomplete, you may request that this data be corrected. You may also have the right to request the erasure or restriction of the processing of your personal data if, for example, there is no longer a legitimate business purpose for such processing in accordance with this Privacy Policy or applicable law and statutory retention obligations do not require further storage.
7.3 Right to data portability (Art. 20 GDPR)
You may have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format or to transmit those data to another controller.
7.4 Right to withdraw your consent (Art. 7 para. 3 GDPR)
If you have consented to the collection and processing of your personal data, you can withdraw your consent at any time with effect for the future, but without affecting the legality of the data processing carried out on the basis of the consent until its withdrawal.
7.5 Supervisory authority responsible for possible complaints
You have the right to lodge a complaint with the competent supervisory authority (in particular the supervisory authority in the EU Member State of your residence, place of work or place of the alleged infringement) if you consider that the processing of your personal data is unlawful. The data protection supervisory authority responsible for us is:
The Hessian Commissioner for Data Protection and Freedom of Information
Gustav-Stresemann-Ring 1, D-65189 Wiesbaden
Phone +49 (0) 611-1408-0
E-mail poststelle@datenschutz.hessen.de
8. Data transmission and security
We take appropriate measures to secure your personal data. For security reasons, our Website uses SSL or TLS encryption. You can recognize an encrypted connection by the "https://" address line of your browser and the lock symbol in your browser line.
Our security precautions are subject to a continuous improvement and optimization process. Please always use the latest version of your browser to ensure that your personal data is protected in the best possible way.
9. Automated decision making
We do not use automated decision-making within the meaning of Art. 22 GDPR on our Website.
10. Reservation of amendment
We reserve the right to amend this Privacy Policy in compliance with legal requirements. This may be the case, for example, to comply with new legal provisions or to take account of new functions of our Website. However, we will at all times treat your personal data in accordance with the version of the Privacy Policy that was in force at the time this information was collected.
November 2024