On behalf of the consortium, Salzgitter Mannesmann Forschung GmbH appreciates your interest in our joint project GrInHy2.0 and your visit to our website. The protection of your personal data is an important concern for us. Therefore, we would like to inform you in the following about the processing of personal data in the context of the use of our website and to inform you about the rights you are entitled to.
Responsible according to Art. 4 para. 7 EU Data Protection Basic Regulation (DSGVO) is
Salzgitter Mannesmann Forschung GmbH
38239 Salzgitter, Germany
Phone: +49 5341 21-8607
Data protection officer: datenschutz(at)szmf.de
We specifically process the following personal data:
Every time a user accesses our website and every time a file is retrieved, data about this process is temporarily stored in a log file. The stored data is evaluated anonymously for internal statistical purposes only, in order to continuously improve the content of our website. There is no personal exploitation. In detail, a data record is stored for each access, which contains the following data in particular:
- the IP address used
- the operating system used
- the browser used
- the time of access
- the pages you visit on our site
- the website you last visited (if transmitted)
- the volume of data transmitted
This website uses fonts provided by MyFonts Inc., 600 Unicorn Park Drive, Woburn, MA 01801, USA. Due to the terms of the license, page view tracking is carried out; this enables MyFonts to count the number of visits to our website in order to calculate the license fee. When a visitor accesses our website, data is retrieved from a MyFonts server. This informs MyFonts of your IP address and also provides some technical information about your browser, as almost all web browsers automatically send this data whenever they access a website as part of the connection request. You can find further information about data privacy at MyFonts via the following link: https://www.monotype.com/legal/privacy-policy/web-font-tracking-privacy-policy
In order to display our contents correctly in all browsers and in a graphically appealing manner, we use script libraries and font libraries on this website. The calling of script libraries or font libraries automatically initiates a connection to the operator of the library. It is thereby possible that the operators of corresponding libraries will collect and analyse data about these calls. The webfonts used on our pages are provided by Monotype Imaging Holdings Inc., 600 Unicorn Park Drive, Woburn, Massachusetts, USA. The data protection guideline of the library operator can be found at https://www.monotype.com/legal/privacy-policy/web-font-tracking-privacy-policy
If you do not want this to happen, you can configure your browser to inform you, when cookies are placed and to allow this only on a case-by-case basis. Deactivating cookies may diminish the functionality of our website.
Our web site uses the Siteimprove web analysis tool from Siteimprove GmbH, which is based in Berlin and has servers in Germany and Denmark. This uses information from cookies and server log files, which are transferred to the Siteimprove server and processed for evaluating the use of our web site and compiling reports on web site activity for us. We have signed the appropriate contract data processing agreement with Siteimprove.
You can prevent Siteimprove acquiring this data by clicking on the link below. This places an opt-out cookie that prevents your data being acquired when you visit our web site in future.
Opt-out - Siteimprove Analytics
If you wish to use the contact forms on our website to communicate with us, you will be required to enter your forename, surname and email address. We will not be able to process the issue you enter in the contact form without this information. Entering your postal address is optional; it enables us to process your issue and reply via post if you wish. In addition, our system collects the IP address of the computer you use to submit the form as well as the date and time the form is submitted. The information you provide is collected to the required extent and is used exclusively for the purpose of processing your inquiry.
You can find information about online applications here.
We have integrated YouTube videos on our website that are stored at www.youtube.com and can be viewed directly from our website.
They are all integrated in “privacy-enhanced mode”, which means that no data about you as a user is transmitted to YouTube, if you do not watch these videos. Data is only transmitted to the YouTube server when you play the videos. If you are logged into your YouTube account at the same time, this information is attributed to your YouTube user account. You can prevent this by logging out of your YouTube user account before visiting our website.
YouTube is operated by YouTube LLC, headquartered at 901 Cherry Avenue, San Bruno, CA 94066, USA. YouTube is represented by Google Inc., based at 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. You can find more information about how YouTube (Google) handles user data at: www.google.de/intl/de/policies/privacy.
We use the services of Mapbox Inc. (Mapbox) to display interactive maps on some pages of our website. Using our website may lead to information about your use of this website, including your IP address, being transmitted to Mapbox in the USA.
When you access a page that contains Mapbox maps, your browser establishes a direct connection with Mapbox servers. The map content is directly transmitted by Mapbox to your browser, which integrates the content into the website. We therefore cannot influence the amount of data, which is collected by Mapbox in this manner.
You can prevent Mapbox from placing cookies on your device by deactivating third-party cookies in your browser settings.
We have included a Twitter widget on our Group websites to display tweets of our Twitter account. Therefore, the server is simply connected to Twitter and the content is then processed by our server before it is displayed on our Group pages. This excludes a direct and unknowable communication between the user of the Group websites and Twitter in the first place.
(Personal) data is only transmitted when the user clicks on one of the links within the Twitter post. Regardless of the registration status, data will be transmitted to Twitter from this point on. For this, a connection to Twitter is established, log data is transmitted to Twitter and, if necessary, a cookie is set on the user's computer. According to its own information, Twitter begins to delete, remove the identification or the record of data after a maximum of 10 days; this should normally take place immediately, but can take up to a week. Further information can be found at https://twitter.com/privacy?lang=en#widget-jump.
Our website contains links to other websites in some places. We take all reasonable care to check these links. The company is not responsible for the content of linked pages or for ensuring data privacy on these pages. You can find further information about the social media presences accessible from our site by clicking here.
For security reasons and in order to safeguard the transmission of confidential data you send to us, this website uses SSL encryption. You can recognize an encrypted connection by your browser’s address bar, which changes from “http://” to “https://” and displays a lock symbol.
When SSL encryption is activated, the data you transmit to us cannot be read by third parties.
If we have stored personal-related data of you, we will only process this data for the time period required to serve the purpose it was stored for or for the time period required by law.
If the storage purpose ceases to exist or if the storage period required by law expires, the personal data will be routinely blocked or deleted in accordance with legal requirements.
Logfiles are deleted according to provider specifications:
- The access logs of the Web servers capture, which page views took place at which time. They contain the following data: IP, directory protection user, date, time, pages viewed, protocols, status code, data volume, referer, user agent, host name viewed.
- The IP addresses are stored anonymously. The last three digits are removed, i.e. 127.0.0.1 becomes 127.0.0.*. IPv6 addresses are also anonymized. The anonymous IP addresses are kept for 60 days. Information about the directory protection user used is anonymized after one day.
- Error logs, which log incorrect page views, are deleted after seven days. Those include, in addition to error messages, the IP address accessing the page and, depending on the error, the website accessed.
- Access via FTP is logged with anonymous information on user name and IP address and stored for 60 days.
- The mail logs for sending e-mails from the web environment are anonymized after one day and then kept for 60 days. During anonymization, all data concerning the sender/recipient etc. is removed. Only the data at the time of sending and the information on how the e-mail was processed (queue ID or not sent) are retained.
- Mail logs for sending via our mail server are deleted after four weeks. The longer retention period is necessary to ensure the functionality of the mail services and to combat spam.
- It is not possible to individually define the storage period.
A storage going beyond this is exceptionally possible. In this case, however, the IP addresses of the users are deleted or alienated so that an assignment of the calling client is no longer possible.
Your data from the input mask of the contact form will be deleted when the respective conversation with you has ended. The conversation is terminated when it can be seen from the circumstances that the matter in question has been conclusively clarified. The additional personal data collected during the sending process (e.g. IP address) will also be deleted according to the aforementioned provider specifications.
Within Salzgitter AG, access to your data is only afforded to people and departments that require access to perform their duties within Salzgitter AG, to pursue our legitimate interests or to fulfill contractual and legal obligations.
To enable us to offer you the best possible service and remain competitive, we also exchange data with other allied companies of Salzgitter AG where necessary to pursue our legitimate interests, provided that your interests or your basic rights or freedoms do not outweigh our interest. Whenever we exchange information with allied companies, we guarantee that data is transmitted in accordance with data privacy requirements and that your personal data is protected.
As a fundamental rule, if you provide your personal data to us, we will not pass this data on to third parties. Such data will only be disclosed
- in order to fulfill legal obligations to authorized authorities,
- in accordance with consent you provided and
- to IT service providers, e.g. in relation to administration and hosting of our website.
Data is only transferred to countries outside of the EU or the EEA (so-called third countries) insofar as this is stated in the present data privacy statement, is necessary to perform contracts, or is legally required, or in the case you have given us your consent to do so.
All data subjects have a right of access in accordance with Art. 15 GDPR. If we process your personal data, you have the right of rectification in accordance with Art. 16 GDPR, the right to erasure in accordance with Art. 17 GDPR, the right to restrict the processing in accordance with Art. 18 GDPR, the right to object pursuant to Art. 21 GDPR and the right of data portability pursuant to Art. 20 GDPR. Restrictions to the right of access and the right to erasure apply pursuant to Sections 34 and 35 of the German Federal Data Protection Act (BDSG). Furthermore, data subjects have the right to lodge a complaint with a supervisory authority (Art. 77 GDPR in conjunction with Section 19 BDSG).
If you have given us consent to process your personal data, you can also revoke this consent at any time by the same method you first provided it. You can revoke your consent without completing a form, e.g. by emailing datenschutz.holding(at)salzgitter-ag.de or by sending a message to the contact address listed above. Revoking your consent does not affect the legality of the processing performed on the basis of your previously issued consent.
Pursuant to Art. 21 para. 1 GDPR, you have the right to object at any time to the processing of your personal data performed on the basis of Art. 6 para. 1 lit. f) GDPR (data processing for the purposes of legitimate interests).
If you do raise an objection, we will no longer process your personal data for the purposes to which you have objected, unless
- we can demonstrate overriding legitimate grounds that outweigh the interests, rights and freedoms of the data subject, or
- the processing serves to assert, exercise or defend legal claims.
In the case that the objection only or also relates to data processing for the purpose of direct marketing, we will no longer process your personal data for this purpose.
You can raise an objection without completing a form, e.g. by emailing datenschutz.holding(at)salzgitter-ag.de or by sending a message to the contact address listed above.
Personal data processing relating to the use of contact forms is performed on the basis of Art. 6 para. 1 lit. b) GDPR, provided that the purpose of making contact serves to fulfill a contract or perform pre-contractual measures.
If our company is subject to a legal obligation which necessitates the processing of personal data, this processing is based on Art. 6 para. 1 lit. c) GDPR.
If we obtain your consent for personal data processing operations, this consent serves as the legal basis for processing pursuant to Art. 6 para. 1 lit. a) GDPR.
Furthermore, processing operations can be performed on the basis of Art. 6 para. 1 lit. f) GDPR, whereby processing is necessary to pursue a legitimate interest held either by our company or a third party, provided that the data subject’s interests, basic rights, or basic freedoms do not override our interest.
We use server log files, cookies, web fonts, Mapbox, embedded YouTube videos and web analysis tools so that you can use all of our website’s functions to their full extent and in order to structure and optimize our website in accordance with its users’ requirements. If you contact us via our contact form or using the functions in our Career blog, we will use your data for the purpose of interacting with you and for corporate communications.
As a fundamental rule, there is no obligation to provide personal data when visiting our website. Contractual regulations may provide otherwise. If the specified personal data is not provided, in some circumstances, it may not be possible to achieve the individual described purposes.
As the internet continues to develop, it will be necessary to make periodic amendments to the data privacy statement. Reviewing the data privacy statement at regular intervals will give you the opportunity to stay apprised of amendments.
For additional information concerning data protection for our business partners and their contacts according to the General Data Protection Regulations (GDPR), please click here (currently only available in German).