Data privacy statement
The data protection policy of Maxem Engineering Ltd
The protection of personal data is very important to Maxem Engineering Ltd (hereinafter also referred to as “we” or “us”). We therefore conduct our activities in accordance with the applicable legal provisions for the protection of personal data and data security. The following information will explain what information we collect, how we handle it and who we make it available to.
As a rule, you can visit the pages of Maxem Engineering Ltd without us needing any personal data from you beyond that which is automatically transmitted as part of the technical framework required to call up the web pages.
In the following we wish to inform you about the processing of your personal data in accordance with the requirements of the EU General Data Protection Regulation (Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 – hereinafter referred to as “GDPR”):
Section 1 Information about the processing of personal data and the controller
1) In the following we provide information about the processing of personal data when you use our Web site www.maxem.ie (hereinafter referred to as “Web site”). Personal data is all data that is personally identifiable to you, e.g. name, address, email addresses, user behavior.
2) The “controller” pursuant to Article 4, Paragraph 7 of the EU General Data Protection Regulation (GDPR) is
Maxem Engineering Ltd is represented by its managing directors Peter Henebry and Martin Butler.
You can contact our data protection officer at firstname.lastname@example.org or using our regular mail address for the attention of “Dataprotection”.
3) When you contact us by email or via a contact form, the data you provide (your email address and where applicable your name, your company name and your telephone number) will be stored by us to allow us to answer your questions. We delete the data arising in this context after storage is no longer necessary or restrict processing if statutory retention obligations pertain.
4) If we use contracted service providers for individual functions of our content or would like to use your data for advertising purposes, we will inform you in detail about the relevant processes below. We shall also specify the defined criteria for the storage period.
Section 2 Your rights
You have the following rights which are enforceable against us with regard to personal data relating to you:
– Right to information and a copy of the stored personal data relating to you (Article 15 GDPR),
– Right to rectification of incorrect personal data (Article 16 GDPR),
– Right to erasure and right to be forgotten (Article 17 GDPR)
– Right to restriction of processing (Article 18 GDPR)
– Right to data portability (Article 20 GDPR)
Furthermore, you have the right to withdraw your consent in respect of data protection at any time (Article 7, Paragraph 3 GDPR) without incurring any costs other than transmission costs at basic tariff. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal. Withdrawal of consent can be declared to our data protection officer.
Insofar as we base processing of your personal data on the weighing up of interests, you may object against processing (Article 21 GDPR). This is the case if processing is not necessary, to fulfill a contract with you, which process we present in the following description of the functions. If you exercise this right to object, we ask you to explain the reasons why we should not process your personal data in the way in which we do. In the event that you object and provide reasons, we will examine the situation and either stop or adjust data processing or explain to you our compelling legitimate grounds, on the basis of which we will continue processing.
You can, of course, object to the processing of your personal data for the purposes of advertising and data analysis at any time without giving reasons and without the necessity for interests to be weighed up. You can inform us of your objection to advertising using the following contact data: email@example.com with Data protection referenced in the subject line.
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a relevant data protection authority (Article 77 GDPR), in particular in the Member State of your habitual residence, place of work or place of the alleged infringement if you consider that the processing of personal data relating to you infringes the GDPR. For us, the following supervisory data protection authority has responsibility:
Section 3 Collection of personal data during visits to our Web site (including cookies)
1) When you use the Web site for information purposes only, i.e. if you do not register or otherwise provide us with information, we only collect the personal data that your browser transmits to our server. If you wish to view our Web site, we collect the following data, which is technically necessary for us to display our Web site to you and to guarantee stability and security (the legal basis for this is Article 6, Paragraph 1, Point f GDPR):
– IP address
– Date and time of the query
– Time zone difference from Greenwich Mean Time (GMT)
– Content of request (actual page)
– Access status/HTTP status code
– Data volume transferred on each occasion
– Web site from which the request is received
– Operating system and its user interface
– Language and version of the browser software
The data collected will be deleted as soon as it is no longer required to achieve the purpose for which it was collected. In the case of data collection for provision of the Web site, this applies when the respective session has ended.
2) In addition to the collection of the aforementioned data, cookies are stored on your computer when you use our Web site. Cookies are small text files assigned to the browser you are using and that are stored on your hard disk. Through these, certain information is passed to the party that sets the cookie (in this case, us). Cookies cannot run programs or transmit viruses to your computer. They serve to make the Web offering more user-friendly and efficient.
a) This Web site uses the following types of cookies, the scope and function of which are explained below:
– Transient cookies (see b)
– Persistent cookies (see c).
- b) Transient cookies are automatically deleted when you close your browser. These include session These store a “session ID”, which allows the various requests from your browser to be assigned to a single common session. This allows your computer to be recognized when you return to our Web site. Session cookies are deleted when you log out or close your browser. The legal basis for processing using these cookies is Article 6 Paragraph 1, Point f of the GDPR, with our legitimate interests arising from ensuring the functionality of our Web site.
- c) Persistent cookies are automatically deleted after a specified period, which may vary depending on the cookie. You can delete cookies at any time using the security settings of your browser.
- d) You can configure your browser settings according to your wishes and, for example, refuse acceptance of third-party cookies or all cookies. Please note that in this event you may not be able to use all functions of this Web site.
Section 4 Purpose limitation
Maxem Engineering Ltd will collect, use or disclose personal data supplied by you online only for the purposes disclosed to you, unless: the collection, processing or use of the personal data is for any additional purpose that is directly related to the original purpose for which the personal data was collected; is necessary to prepare, negotiate and perform a contract with you; is required by law or the competent governmental or judicial authorities; is necessary to establish or preserve a legal claim or defense; is necessary to prevent fraud or other illegal activities, such as willful attacks on Maxem Engineering Ltd data security systems.
Section 5 Recipients or categories of recipients of personal data
The following list provides you with an overview of the currently known recipients of the obtained personal data:
– Public authorities that receive the data on the basis of statutory regulations (e.g. social insurance agencies, tax authorities, supervisory authorities).
– Internal instances that participate in the execution of the relevant business process (primarily: human resources, accounts, financial accounting, purchasing, marketing, general administration, sales and IT). This may also comprise employees of the named departments in other companies of the Maxem Group provided that the department is a central department that also undertakes tasks for Maxem Engineering Ltd.
– External contractors (service providers such as lettershops, IT service providers, etc.) who work for us in accordance with instructions and whom we have obligated in accordance with Article 28 GDPR.
– Other external bodies, e.g. banks for salary payments, other companies, insofar as the person concerned has given their written consent or transmission is permissible for reasons of overriding legitimate interest.
Section 6 Security
We will implement technical and organizational security measures to protect your personal data against accidental or unlawful deletion, modification or loss, as well as against unauthorized disclosure or unauthorized access.
Section 7 Links to other Web sites
Our Web sites contain links to other Web sites. We are not responsible for the data protection policies or the content of these other Web sites.
Section 8 Use of Google Analytics
1) This Web site uses Google Analytics, a web analytics service provided by Google, Inc. (“Google”). Google Analytics uses “cookies”, which are text files placed on your computer to help the Web site analyze how you use the site. The information generated by the cookie about your use of the Web site (including your IP address) will generally be transmitted to and stored by Google on servers in the United States. If IP anonymization is activated on this Web site, your IP address will, however, within Member States of the European Union or other parties to the Agreement on the European Economic Area, be truncated by Google beforehand. Only in exceptional cases will the full IP address be sent to a Google server in the United States and truncated. On behalf of the operator of this Web site, Google will use this information for the purpose of evaluating your use of the Web site, compiling reports on Web site activity for Web site operators and providing other services relating to Web site activity and Internet usage.
2) The IP address transferred by your browser within the scope of Google Analytics will not be associated with any other data held by Google.
3) You can prevent the storage of cookies by selecting the appropriate settings in your browser software. However, we would like to point out that if you do so, it may not be possible for you to make use of the full scope of all this Web site’s functions. You can also prevent the data generated by the cookie and related to your usage of this Web site (including your IP address) from being conveyed to and processed by Google by downloading and installing a browser plug-in available through the following link: http://tools.google.com/dlpage/gaoptout?hl=de.
4) This Web site uses Google Analytics with the extension “_anonymizeIp()”. This causes IP addresses to be truncated before they are further processed, meaning that it is not possible for them to be associated to a single person. If the data collected about you can be associated with a single person, this association is immediately excluded, hence immediately deleting the personal data.
5) The legal basis for the use of Google Analytics is Article 6, Paragraph 1, Point f GDPR. We use Google Analytics in order to analyze the way in which our Web site is used and to improve the Web site on a regular basis. The resulting statistics allow us to improve our content and make it more interesting for you as a user. These purposes form our legitimate interest in processing personal data pursuant to Article 6, Paragraph 1, Point f GDPR. In respect of the exceptional cases where personal data is transmitted to the United States, Google has signed up to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.
6) Third-party information:
Google Dublin, Google Ireland Ltd.,
Gordon House, Barrow Street,
Dublin 4, Ireland,
Fax: +353 (1) 436 1001.
Data privacy overview: http://www.google.com/intl/de/analytics/learn/privacy.html,
Section 9 Other functions and content on our Web site
In addition to its use purely as a source of information, our Web site offers a range of different services that you can use if they are of interest to you. In order to do this, you will usually have to provide additional personal data, which we use to provide the relevant service and to which the principles of data processing as laid down in the requirements of the GDPR also apply.
- a) Newsletters
Our Web site allows you to subscribe to a newsletter free of charge. When you register for the newsletter, the data you enter in the form is transmitted to us. This applies to the following items:
– Email address
– Last name
You also have the option of sending us your title and first name if you wish.
This data will be used exclusively for the purpose of sending the newsletter.
The legal basis for processing this data after users subscribe to the newsletter is Article 6, Paragraph 1, Point a GDPR, provided that the user has given consent.
The user’s email address is collected to allow the newsletter to be delivered.
The collection of other personal data within the registration process serves to prevent misuse of the services or the email address used and to address you personally in the newsletter.
The data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected. The user’s email address will therefore be stored for as long as the subscription to the newsletter is active.
You can revoke your consent at any time with future effect without incurring any costs other than transmission costs at basic tariff. In particular, you have the option of cancelling your subscription and unsubscribing from the newsletter. You will find a link to unsubscribe in each newsletter.
- b) Email contact
You can contact us via the email addresses for our contact persons provided on our Web site. In this event, both the sender’s email address and the content data of the email are processed. The legal basis is Article 6, Paragraph 1, Point f GDPR, whereby we have a legitimate interest in answering the associated contact inquiries. In this context, no data will be passed on to third parties. The data is used exclusively for processing the conversation.
- c) Use of social media plug-ins
In some cases we use external service providers to process your data. These have been carefully selected and commissioned by us, are bound by our instructions and are regularly monitored.
- d) Promotions, competitions, contracts and similar services
Furthermore, we may pass on your personal data to third parties if we offer special promotions, competitions, contracts or similar services in collaboration with partners. You can obtain more detailed information on this when you enter your personal data or at the bottom of the description of the relevant offering.
If our service providers or partners are based in a country outside the European Economic Area (EEA), we will inform you of the consequences of this in the description of the offering.
Section 10 Transfer of personal data to third countries
Insofar as it is necessary for the fulfillment of the contract, for internal communication or administration within the Maxem Group, or due to a service provider being domiciled in a third country – outside the European Union and the European Economic Area – your personal data may also be transferred to third countries if the data protection requirements are met.
If data is transferred to third countries, then this is always preceded by an in-depth examination and assessment by our Data Protection Officer. Furthermore, such transfers may take place only if the body in the third country affords an appropriate level of data protection or there are suitable guarantees that ensure an appropriate level of data protection at the said body (Article 45 ff. GDPR) or if such guarantees are exceptionally not required (Article 49, Paragraph 1, Subparagraph 1 GDPR). Should you wish to receive further information about the guarantees in any individual case, please contact our Data Protection Officer.
Section 11 Sources of personal data that we do not collect directly from you
We do not currently acquire personal data from any other sources (e.g. address dealers). Your personal data is either entered directly by you or is passed on to us on the conclusion of a contract.
Section 12 Automated decision-making, including profiling, as described in Article 22 GDPR
Your personal data will not be used for the creation of a profile or for automated decision-making as required by Article 22, Paragraphs 1 and 4 GDPR. However, if in certain defined processing situations, automated decision-making should take place, you will be informed of this separately and we request separate prior consent from you in such cases.
Section 13 Company Data Protection Officer
We have appointed a Company Data Protection Officer. You can contact him using the following data:
– by email at firstname.lastname@example.org
– or by regular mail at the address given in Section 1, Paragraph 2, marked for the attention of “Dataprotection”
Date: 08 May 2018