Data protection declaration

We are delighted that you have opted to use our services. STABILA takes the protection of your personal data very seriously. Our data protection declaration explains what data we collect, how we use it, and your rights.

 

General information

Contact data for the controller

In the context of the European General Data Protection Regulation (GDPR), additional national data protection laws of the member states and other data protection regulations, the controller (hereinafter "STABILA") is:


STABILA Messgeräte Gustav Ullrich GmbH
Landauer Straße 45
76855 Annweiler am Trifels
Germany
Commercial Registration No.: Landau District Court HRB 3217
Tel: +49 (0)6346 3090
E-mail: datenschutz@de.stabila.com

The company is legally represented by its CEO, Dr Ulrich Dähne.

 

Contact data for data protection officer

CTM-COM GmbH
Marienburgstraße 27
64297 Darmstadt
Germany
Tel: +49 (0)6151 3942 72
E-mail: datenschutz@ctm-com.de

Data subjects may contact our data protection officer directly at any time should they have any questions or suggestions regarding data protection.

 

Contact form / Repair registration

On our website, you can contact us or register repairs by e-mail and/or by using our contact form. In this case, the information provided by the user (mandatory fields: e-mail address and message) will be stored to process their enquiry. For repair registrations there are additional mandatory fields (first name and last name, address, phone number, private or business customer). Data that you provide when you contact us is not shared with third parties. The data that is obtained in this way will not be aligned with data that may be collected by other components of our website.

The data is processed on the basis of Article 6(1)(1)(b) of the GDPR if your enquiry relates to the fulfilment of a contract or is required to take steps prior to entering into a contract. In all other cases, your data is processed on the basis of your consent (GDPR Article 6(1)(1)(a)) and/or our legitimate interests (GDPR Article 6(1)(1)(f)), as we have a legitimate interest in the effective handling of enquiries and registrations sent to us.

To deliver the service, if required for an online label, your address details may be shared with logistics providers such as DHL Paket GmbH. Your data will not be passed on to other third parties.

 

Basic procedures and legal basis for processing personal data

We consider it our overriding obligation to handle the personal data you provide us with in the strictest confidence and to protect this data against unauthorised access. We therefore take the greatest care and implement the latest security standards to guarantee the highest level of protection of your personal data.

As a private company, we are subject to the European General Data Protection Regulation (GDPR) and regulations of the Federal Data Protection Act (BDSG).

We have implemented technical and organisational measures to ensure that these provisions relating to data protection are observed by us and our external service providers.

We only process personal data, provided that the person concerned has given their consent [Article 6 (1), (1a) of the GDPR], if required as part of the legal obligations to process a contract or pre-contractual measures [Article 6 (1), (1b) of the GDPR], if there is a legitimate interest [Article 6 (1), (1f) of the GDPR] or to protect the vital interests of one of the parties concerned [Article 6 (1) (1d) of the GDPR], e.g. sharing personal data in the event of an accident, if the party concerned cannot provide the information themselves.

 

Disclosure of data to third parties and processing order data

We use your personal data to fulfil our contractual and legal obligations. When necessary, permitted or required by law, we will share your personal data with third parties or processors. Processors handle personal data on our behalf and only in accordance with our specifications.

We do not implement automated decisions relating to the processing of data. We do not carry out profiling (automated processing with the objective of evaluating certain personal aspects).

 

Storage period of personal data

We store your personal data for as long as we require it to fulfil our contractual and legal obligations. Your personal data is then deleted as soon as we no longer require it and there is no law that stipulates that the data should continue to be stored. Personal data that we process for legitimate company interests is stored until its purpose is fulfilled and the task is completed. Your personal data is not deleted as long as it is required to assert, exercise or defend legal claims, or you have given your consent to it being retained.

 

Your rights

  • If you would like to know what personal data we have stored relating to you, we will inform you upon request as you have the right to access in accordance with Article 15 of the GDPR and Article 34 of the Federal Data Protection Act (BDSG).
  • If you inform us that personal data is incorrect, we must correct it. You have the right to make corrections in accordance with Article 16 of the GDPR.
  • You have the right to have your personal data deleted in accordance with Article 17 of the GDPR and Article 35 of the Federal Data Protection Act (BDSG). You also have the right to restrict the processing of your personal data in accordance with Article 18 of the GDPR.
  • You have the right to object in accordance with Article 21 of the GDPR. Any consent to the processing of your personal data that you may have granted can be revoked at any time with effect for the future. If you inform us that you object to your personal data being processed, the lawfulness of processing based on your consent is not affected until you submit your objection.
  • You have the right to data portability in accordance with Article 20 of the GDPR.

If you wish to exercise your rights, please contact us or our data protection officer. If you wish to exercise any of your rights, please be aware that we will store both your request and our subsequent response for a period of three years as evidence that the proper information or response was given.

In accordance with Article 13 (2) (d) of the GDPR, you also have the right to lodge a complaint with the relevant supervisory authority. The supervisory authority can be contacted at the address below:

Der Landesbeauftragte für den Datenschutz und die Informationsfreiheit Rheinland-Pfalz [State representative for data protection and freedom of information for Rhineland-Palatinate, Germany]
Postfach 3040, 55020 Mainz
Germany
Tel.: +49 (0)6131 8920-0
E-mail: poststelle@datenschutz.rlp.de
Internet: https://www.datenschutz.rlp.de/de/startseite/

 

Use of our website

Collection, use and disclosure of personal data

It is possible to use stabila.com and stabila-promotion.com without disclosing personal data. Different regulations may apply to the use of individual services on our websites; if so, they are explained separately below. Your personal data (e.g. name, address, e-mail and phone number) will only be processed by us in accordance with the provisions of German and European data protection law. Data is classed as personal data if it can be used to identify a natural person. This data is collected on the basis of the EU GDPR and the Federal Data Protection Act (BDSG) in its latest version. If you have provided us with personal data, we will only use it to answer your enquiries, to process your contracts and registrations and for technical administration.

Every time you access our Internet portal or retrieve a file stored on the Internet portal, this is logged. This information is stored for internal system-related and statistical purposes.

 

Transfer of data to the USA

The European Court of Justice views the level of data protection in the USA as inadequate by EU standards. In particular, there is a risk that your data may be processed by US authorities for monitoring purposes, potentially without the possibility of legal remedy.

Please take special note of the information provided in this data protection declaration on the tools and services we use in relation to the transfer of data to the USA.

Many tools and services use cookies (you can find out more about this under "Cookies" below). The use of cookies is typically associated with the transfer of data to the USA, involving US providers such as Google, Facebook, Twitter, YouTube and LinkedIn. If you do not wish this, be sure to revoke the relevant consent that you gave when you accessed the website.

 

Objecting or revoking consent to the processing of your data

If you have consented to the processing of your data, you can revoke this consent at any time. Revoking your consent will affect the permissibility of processing your personal data after you have made us aware of this preference.

 

Where the processing of your personal data is based on the balancing of interests, you may object to such processing. This is the case when processing is not required in order to fulfil a contract with you, which is indicated by us in each case in the description of functions below. When you make such an objection, please explain the reasons why you do not wish us to process your personal data in a particular way. When you provide your objection and reasons, we will assess the situation and either cease to process your data, adjust the manner in which we process it, or explain to you the compelling, legitimate reasons why we will continue to process the data.

You can object to the processing of your data for the purposes of advertising and data analytics at any time.

 

SSL and TLS encryption

For security reasons and to protect the transfer of confidential content that you send to us as the site operator, such as orders and enquiries, this site uses SSL and/or TLS encryption. You can recognise an encrypted connection by the fact that the browser's address bar changes from "http://" to "https://" and by the padlock symbol in the browser bar. If SSL or TLS encryption is enabled, data that you transfer to us cannot be read by third parties.

 

Server data

For technical reasons, the following data, which your web browser transfers to us or to our web space provider, is collected (in the form of server log files):

  • Browser type and browser version
  • Operating system used
  • Web page from which you visited us (referrer URL)
  • Web page you are visiting
  • Date and time of your visit
  • Your Internet Protocol (IP) address (anonymised)

This anonymised data is stored separately from any personal data you may have provided and therefore cannot be used to identify you. The data is evaluated for statistical purposes so that we can optimise our website and our services. The data is automatically erased after 13 months.

 

Cookies

We use cookies on our website to identify recurring use of our service by the same user/Internet subscriber. Cookies are small text files which your web browser saves and stores on your computer. They are used to optimise our website and our services. For the most part they are "session cookies", which are deleted at the end of your visit. In some cases, however, these cookies provide information so that you can be automatically recognised on a subsequent visit. This form of identification is based on the IP address saved in cookies. The information obtained in this manner is used to optimise our services and make it easier for you to access our website. You can prevent cookies from being installed by selecting the appropriate setting in your browser; however, please note that if you do, you may not be able to enjoy the full functionality of our website.

By consenting to the use of cookies from US providers such as Google, Facebook, Twitter, YouTube and LinkedIn, you also consent to your data being processed in the USA in accordance with Article 49 (1) (1a) of the GDPR.

To change the data protection preferences you have previously selected, click here.

 

Google web fonts (local hosting)

To display fonts uniformly, this site uses web fonts provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, hereinafter referred to as "Google". Google fonts are installed locally. No connection is established with Google servers. More information about Google web fonts is available at https://developers.google.com/fonts/faq and in the Google privacy policy: https://policies.google.com/privacy?hl=en

 

Matomo analysis tool

1) This website uses the web analytics service Matomo to enable us to analyse and continually improve the use of our site. We use the collected statistics to improve the site and make it more interesting for you as the user. The legal basis for the use of Matomo is Article 6 (1) (1a) of the GDPR.

2) For the purposes of this analysis we store cookies on your computer (for more information, see "Cookies"). The information gathered is stored by the controller exclusively on its server in Germany. You can prevent the use of analytics by deleting existing cookies and disabling the storage of cookies. Please be aware that, if you disable the storage of cookies, you may not be able to make full use of all functions on the site. You can block the storage of cookies with the appropriate setting in your browser.

3) This site uses Matomo with the AnonymizeIP add-on, which shortens IP addresses before they are processed to prevent them from being directly associated with an individual person. The IP address shared by your browser through Matomo is not combined with other data we collect.

4) The Matomo program is an open-source project. You can view this third-party provider's privacy policy at http://matomo.org/privacy/policy

 

AWStats analytics tool

We use the analytics tool AWStats on our website. This analytics software enables information about the way a website is used to be collected without using cookies. To do this, the program evaluates the log files generated by the user's browser. These files contain the data listed under "Server data". This data is not merged with other data, which means that it is not possible to identify an individual. The data is not passed on to third parties. The collected data is automatically deleted after 12 months.

 

Google Maps

On our website, we use the Google Maps component from Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter referred to as "Google").

Every time the Google Maps component is accessed, a cookie is generated by Google to process user settings and user data when displaying the page on which the Google Maps component is integrated. As a rule, this cookie is not deleted when the browser is closed. Instead it expires after a defined period of time, unless deleted manually beforehand.

If you do not agree to your data being processed in this way, you have the option to disable the Google Maps service and thereby prevent data being transferred to Google. To do this, you must disable the JavaScript function in your browser. However, please note that in this case you will not be able to use Google Maps or will only be able to use it to a limited extent.

The use of Google Maps and the information obtained via Google Maps is subject to Google's Terms of Service https://policies.google.com/terms and the Additional Terms of Service for Google Maps https://www.google.com/help/terms_maps.html.

 

OpenStreetMap

On our website, we use the OpenStreetMap component supplied by the OpenStreetMap Foundation, St John's Innovation Centre, Cowley Road, Cambridge, CB4 0WS, United Kingdom (hereinafter referred to as "OpenStreetMap").

Every time one of our web pages that is linked to the OpenStreetMap service is accessed, OpenStreetMap saves a cookie on your device via your web browser. This enables your user settings and user data to be processed for the purpose of displaying the page and guaranteeing the functionality of the OpenStreetMap service. By processing this data, OpenStreetMap can determine from which website your request was sent and to which IP address the overview of the journey should be transmitted. The legal basis for this is Article 6 (1) (f) of the GDPR. Our legitimate interest is based on the improvement and cost-effective operation of our web presence. If you do not agree to your data being processed in this way, you have the option to prevent cookies from being installed by selecting the appropriate setting in your browser. Further information on this is provided in the "Cookies" section. OpenStreetMap provides further information about the collection and use of data and your rights and options to protect your privacy at https://wiki.osmfoundation.org/wiki/Privacy_Policy.

 

YouTube (with privacy-enhanced mode)

Our site uses components (videos) from the YouTube service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

We use YouTube's "privacy-enhanced mode" option for this.

When you request a page that has an embedded video, a connection is established to the YouTube servers and the content is displayed on the web page by notifying your browser.

According to information from YouTube, in "privacy-enhanced mode", data is only transferred to the YouTube server – in particular which pages on our site you have visited – when you watch a video. If you are signed into YouTube at the same time, this information will be associated with your YouTube account. You can prevent this by signing out of your YouTube account before visiting our website.

Google has provided further information about data protection with regard to YouTube at this link: https://www.google.com/policies/privacy/


STABILA newsletter

Consent for newsletter

Our STABILA newsletter provides regular news and information about our services. To receive our newsletter, you will need a valid e-mail address. We will then check the e-mail address that you have entered to verify that you are the actual holder of the e-mail address specified and that the holder of this address consents to receiving the newsletter. When you subscribe to our newsletter, we will store your IP address along with the registration date and time. This is a security precaution on our part in case a third party misuses your e-mail address and attempts to subscribe to our newsletter without your knowledge. The data that is obtained in this way will not be aligned with data that may be collected by other components of our website.

 

Newsletter subscription

When you subscribe to our company newsletter, the data you provide in the form is transferred to the parties responsible for processing it. For the subscription process, we use a double opt-in. After registering you will receive an e-mail requesting you to confirm your registration. We require this confirmation to prevent a person from registering using someone else's e-mail address. When you subscribe to the newsletter, your IP address and the date and time of registration are stored. We use this information to prevent misuse of our services and of your e-mail address. This data is not shared with third parties unless there is a legal obligation to disclose it. The data is used solely to send out the newsletter. You can unsubscribe from the newsletter at any time. You can also withdraw your consent to the storage of your personal data at any time. To do this, use the link provided in each newsletter. The legal basis for the processing of this data after the user registers for the newsletter is the consent of the user in accordance with Article 6 (1) (a) of the GDPR.

 

Use of rapidmail

To distribute the STABILA newsletter, we use rapidmail. The service is provided by rapidmail GmbH, Wentzingerstraße, 21, 79106 Freiburg, Germany. rapidmail organises and analyses the distribution of newsletters. The data you provide in order to receive the newsletter is stored on rapidmail's servers in Germany. If you do not wish to receive the newsletter any more, you must unsubscribe. An unsubscribe link is included in each newsletter. For analytical purposes, e-mails sent by rapidmail contain a tracking pixel that connects to rapidmail's servers when the e-mail is opened. This indicates whether a newsletter was opened or not. With the help of rapidmail we can also determine which links in an e-mail the user has clicked on. All links in the e-mail are tracking links that allow your clicks to be counted.

The legal basis for data processing is Article 6 (1) (a) of the GDPR. The data recipient is rapidmail GmbH. The data is not transferred to third countries. The data you provide in connection with consenting to receive the newsletter is stored by us until such time as you unsubscribe from the newsletter. After you have unsubscribed, it is deleted from both our servers and rapidmail's servers.

Withdrawing your consent: You can withdraw your consent to the processing of your data at any time. The withdrawal of consent does not affect the lawfulness of processing that has previously taken place.

For more information about data security at rapidmail, please visit https://www.rapidmail.de/datensicherheit (information in German only). For more details about analytical functions used by rapidmail, please visit: https://www.rapidmail.de/wissen-und-hilfe (information in German only).

 

Social media

1) General information

We maintain publicly accessible profiles on social networks. The individual social networks we use can be found below.

Social networks can normally analyse your user behaviour in depth when you visit the website or a website with integrated social media content (e.g. like buttons or advertising banners). When you visit our social media profile, a range of privacy-relevant processing activities are triggered.

2) Personal data

If you are signed into your social media account and you visit our social media profile, the operator of the social media portal can link this visit to your account. In some circumstances your personal data may also be recorded when you are not signed in or do not have an account with a particular social media portal. In this case, data may be recorded using cookies which are stored on your device or by recording your IP address.
Using this data, the operators of social media portals can create user profiles that include your preferences and interests. This allows them to show you advertising, both within and outside a particular social media profile, that matches your interests. If you have an account with the social network, this interest-related advertising may be shown on all devices on which you are or have been signed in.

Please also be aware that we cannot track all forms of processing that take place on social media portals. Depending on the provider, other forms of processing may therefore be carried out by the operators of social media portals. For further information, please refer to the terms of use and privacy policies of the individual social media portal.

3) Information about risks

We hereby make you aware that the relevant provider may process user data outside the European Union. This may result in risks for the user, for example because it may make it more difficult for users to assert their rights. With respect to US providers who offer guarantees of a secure level of data protection, for example through EU standard contractual clauses, we would make you aware that by this means they undertake to comply with EU data protection standards.

Please note the information provided by us on the transfer of data to the USA.


4) Purpose of processing/legal basis

Our processing of personal data on our social media channels takes place on the basis of our legitimate interests in accordance with Article 6(1)(1)(f) of the GDPR, to provide information about our products and services, to make posts more attractive, to identify the most suitable time for publication and to communicate with customers, interested parties and users active on our sites. We have no control over any other processing by service providers.

To set the cookies mentioned above, the legal basis is your consent in accordance with Article 6(1)(1)(a) of the GDPR. Further information on this is provided in the "Cookies" section.


5) Joint controllership

When you visit one of our social media channels (e.g. Facebook), we are joint controllers with the operator of the social media platform for the data processing activities triggered by your visit.

Please be aware that in spite of this joint controllership with social media portal operators, we do not have complete control of the data processing activities carried out by social media portals. Our scope for action is primarily determined by the individual provider's corporate policy.

6) Exercising your rights

You can assert your rights by contacting us and/or the operator of the relevant social media portal.

However, be aware that this can be done most effectively by contacting the operator. Only operators have access to users' data and can directly take appropriate measures and provide requested information. If you still need help, please feel free to contact us.

7) Duration of storage

The data we gather directly through our social media profile is deleted from our systems as soon as the purpose for storing it no longer applies, you request us to delete it or you revoke your consent to the storage of your data. Stored cookies remain on your device until you delete them. Mandatory legal regulations – in particular storage periods – remain unaffected.

We have no control over the duration for which your data is stored by operators of social networks for their own purposes. For further details, please seek information from the social network operator (e.g. in its privacy statement, see below).

8) Data protection on the part of providers

For a detailed explanation of how your data is processed and how you can opt out, please refer to the privacy statements and information provided by the respective social media network providers, over which we have no control and which apply when you access a given site.


9) Our social media profiles

a) Facebook

We operate the following fan page on Facebook:
https://www.facebook.com/StabilaOfficial

Service provider: Facebook Ireland Ltd., also Facebook Inc., 1601 Willow Road, Menlo Park, California 94025, USA; website: https://www.facebook.com; privacy statement: https://www.facebook.com/about/privacy

Insights data
When you use our fan page, Facebook provides us with various categories of statistical data (known as "insights data"), which we can access. These insights consist of combined data that allows us to see how people interact with our site. This includes: total number of page views, likes, page activity, post interactions, video views, post reach, comments, shared content, replies, gender distribution, location by country and city, language, views and clicks in the shop, clicks on route planners and clicks on phone numbers.

Further information about insights data, including exercising your rights, is available at: https://www.facebook.com/legal/terms/information_about_page_insights_data.

Joint controllership
The operator of the fan page and Facebook are joint controllers in accordance with Article 26 of the GDPR.
An according joint control agreement has been made with the operators of the fan page (this can be accessed at: https://www.facebook.com/legal/terms/page_controller_addendum).

Facebook assumes primary responsibility in accordance with the GDPR for the processing of insights data and will fulfil all obligations arising from the GDPR with respect to the processing of insights data (including Articles 12 and 13 of the GDPR, Articles 15 to 22 of the GDPR and Articles 32 to 34 of the GDPR).

You can contact Facebook's data protection officer using the general contact form at https://www.facebook.com/help/contact/540977946302970.


b) Instagram

We operate the following fan pages on Instagram:
https://www.instagram.com/stabila_official/
https://www.instagram.com/stabila_usa_canada/
https://www.instagram.com/stabila_uk/

Service provider: Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA; website: https://www.instagram.com; privacy statement: http://instagram.com/about/legal/privacy.


c) YouTube

We operate the following channel on YouTube: https://www.youtube.com/c/STABILAOfficial

Service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, a subsidiary of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA; website: www.youtube.com; privacy statement: https://policies.google.com/privacy.
YouTube (with privacy-enhanced mode)

On our website we use components (videos) from the service "YouTube".

We use YouTube's "privacy-enhanced mode" option for this.

When you request a page that has an embedded video, a connection is established to the YouTube servers and the content is displayed on the web page by notifying your browser.

According to information from YouTube, in "privacy-enhanced mode", data is only transferred to the YouTube server – in particular which pages on our site you have visited – when you watch a video. If you are signed into YouTube at the same time, this information will be associated with your YouTube account. You can prevent this by signing out of your YouTube account before visiting our website.

d) LinkedIn

We operate the following channel on LinkedIn: https://www.linkedin.com/company/stabila

Service provider: LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland;
website: https://www.linkedin.com; privacy statement: https://www.linkedin.com/legal/privacy-policy;
opt-out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.

e) TikTok

We operate the following fan page on TikTok:
https://www.tiktok.com/@stabila_official

Service provider: Technology Limited, 10 Earlsfort Terrace, Dublin, D02 T380, Ireland; website: https://www.tiktok.com/; privacy statement: https://www.tiktok.com/legal/page/eea/privacy-policy/en.

To prevent TikTok from associating your visit to our website with your TikTok account, you must log out of your TikTok account before visiting our site.


10) Linking social media profiles through a graphic or text link

We provide links to our website on social media profiles on the above-mentioned platforms. The link is embedded in the form of a linked graphic or text link to the platform. Using this type of link means that when you access a page with a social media link, no link is automatically established to the platform's server in order to depict a graphic belonging to the platform. The user is only connected to the platform's service if they click on the graphic.

Once the user has been connected to the service, the provider collects information about the user. We cannot guarantee that data collected this way will not be processed in the USA.

Please note the information provided by us on the transfer of data to the USA.

This includes data such as IP address, date, time and page visited. If the user is signed into their account on a given platform at the same time, the operator may be able to link the information collected about the user's visit to their personal account. If the user interacts with the platform by using a "Share" button, this information may be stored and potentially published in the user's personal account. If the user wants to prevent the collected information from being directly associated with their account, they must sign out before clicking on the graphic. It is also possible to configure your account accordingly.

 

Flockler

Social wall

We use Flockler, a social media aggregator tool, to curate social media feeds and present social media content that we believe will be relevant and inspiring to you. Flockler does not store any information about your visit. However, some social media platforms may store information about you if you choose to interact with the content (e.g. by playing a video or visiting our social media profile page).

 

Applications

Application platform

Applications should only be submitted through our application platform. You can also access it by clicking on "Go to our current job vacancies" in the careers section of our website.

Applications not received via this platform, but by e-mail or by post, will be immediately destroyed or deleted.

The application platform is operated by our service provider HR Works (HRworks GmbH, Waldkircher Str. 28, 79106 Freiburg, Germany). For information about the processing of your personal data, please refer to our Information for applicants.

 

Cookies

When you use our application platform, the jobs portal server uses three essential cookies. The cookie "HrwJobApplicationmanagementSession" represents the session of the person using the portal. This cookie is required for operation, as it allows users to be distinguished from each other. There are also two AWS cookies ("AWSALB" and "AWSALBCORS"), which are needed to link information with the correct instance of the server and to ensure the smooth upload of application documents.