Privacy policy

Thank you for visiting our website amphos.de and for your interest in our company.

The protection of your personal data, such as date of birth, name, telephone number, address, etc. is important to us.

The purpose of this privacy policy is to inform you about the processing of your personal data that we collect when you visit our website. Our data protection practices comply with the legal requirements of the EU General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (GFDPA).

The following privacy statement is intended to comply with the information requirements of the GDPR. These can be found, for example, in Art. 13 and Art. 14 et seq, GDPR.

Controller

The controller within the meaning of Art. 4 No. 7 GPDR is the person which, alone or jointly with others, determines the purposes and means of the processing of personal data

With regard to our website, the controller is:

AMPHOS GmbH
Kaiserstraße 100
52134 Herzogenrath
Germany


email: info@amphos.de
Phone.: +49 241 565292-10
Fax: +49 241 565292-99

Contact details of the data protection officer

We have appointed a data protection officer in accordance with Art. 37 GDPR. You can reach our data protection officer under the following contact details:

email: privacy@trumpf.com

Hosting the website and creating of log files

Each time you visit our website, our system automatically collects data and information from the device (e.g. computer, mobile phone, tablet, etc.).

What personal data is collected and to what extent is it processed?

(1) Information about the browser type and version used;
(2) The operating system of the accessing device;
(3) Host name of the accessing computer;
(4) The IP address of the accessing device;
(5) Date and time of access;
(6) Websites and resources (images, files, other page content) that were accessed on our website;
(7) Websites from which the user's system accessed our website (referrer tracking);
(8) Message as to whether the access
was successful;
(9) Volume of data transferred.

This data is stored in the log files of our system. This data is not stored together with the personal data of a specific user, so that individual site visitors cannot be identified.

Legal basis for the processing of personal data

Art. 6 para. 1 lit. f GDPR (legitimate interest). Our legitimate interest is to ensure the achievement of the purpose described below.

Purpose of the data processing

Temporary (automated) storage of data is necessary during the course of a website visit in order to enable the website to be delivered. The storage and processing of personal data is also carried out in order to maintain the compatibility of our website for as many visitors as possible and to combat misuse and eliminate malfunctions. For this purpose, it is necessary to log the technical data of the accessing computer in order to be able to react as early as possible to display errors, attacks on our IT systems and/or errors in the functionality of our website. We also use the data to optimise the website and to ensure the security of our IT systems in general.

Duration of storage

The deletion of the aforementioned technical data takes place as soon as they are no longer required to ensure the compatibility of the website for all visitors, but no later than 3 months after accessing our website.

Possibility of objection and deletion

You can object to the processing at any time in accordance with Article 21 of the GDPR and request the deletion of data in accordance with Article 17 of the GDPR. You can find out which rights you have and how to exercise them at the bottom of this privacy policy.

Special functions of the website

Our site offers you various functions, during the use of which personal data is collected, processed and stored by us. We explain below what happens to this data:

Contact form

What personal data is collected and to what extent is it processed?

We will process the information you provide on our contact forms for the purposes set out below.

Legal basis for the processing of personal data

Art. 6 para. 1 lit. a GDPR (consent through clear confirming action or behaviour)

Purpose of the data processing

We will only use the data recorded via our contact form or contact forms for processing the specific contact enquiry received through the contact form.

Duration of storage

After processing your request, the collected data will be deleted immediately, unless there are legal retention periods.

Possibility of revocation and deletion

The revocation and deletion options are based on the general regulations on the right of revocation and deletion under data protection law described below in this data protection declaration.

Necessity of providing personal data

The use of the contact forms is voluntary and is not contractually or legally binding. You are not obliged to use the contact form to contact us, but you can use the other contact options available on our website. If you choose to use our contact form, you must complete the mandatory fields. If you do not provide the required information on the contact form, you will either not be able to submit the request or we will not be able to process your request.

Newsletter registration form

What personal data is collected and to what extent is it processed?

By registering for the newsletter, we receive the e-mail address and, if applicable, further contact data, provided that you communicate this to us. To react optimally to your needs and interests, various companies of the TRUMPF Group will use your e-mail address for advertising purposes. A detailed list of all companies of the TRUMPF Group can be accessed via https://www.trumpf.com/filestorage/TRUMPF_Master/Legal_Issues/Data-Privacy/TRUMPF_Subsidiary_contact_for_GDPR.pdf

We use the TRUMPF newsletter and other mailings to inform you about us and our offers. To manage our e-mail marketing efficiently, your data will be used within the group.

We use the tool Episerver Campaign (Episerver GmbH, Wallstraße 16, 10179 Berlin, Germany) for our e-mail procedure. By setting a tracking pixel when our e-mail is opened, information is retrieved which allows us to evaluate usage behaviour (opening the e-mail, e-mail address, time, IP address). The links in our e-mails are designed so that we can track whether they have been clicked. We use this information to better adapt our services to your interests.

Legal basis for the processing of personal data

Art. 6 para. 1 lit. a GDPR (consent through clear confirming action or behaviour)

Purpose of the data processing

The data recorded in the registration mask of our newsletter will be used by us exclusively for sending our newsletter, in which we inform you about all our services and our news.

Duration of storage

You can unsubscribe from our newsletter at any time by clicking on the unsubscribe link, which is also included in every newsletter. Your data will be deleted by us immediately after un-subscription. Likewise, your data will be deleted by us immediately in the event that your subscription is not completed. We reserve the right to delete without giving reasons and without prior or subsequent information.

Possibility of withdrawal and removal

You can withdraw your consent in accordance with Art. 7 (3) GDPR at any time. However, the processing carried out up to the time of the revocation remains unaffected by this. With regard to the other rights, we refer to the overview at the end of this data protection declaration.

Necessity of providing personal data

If you would like to use our newsletter, you must fill in the fields marked as mandatory and confirm your e-mail address by clicking on the double opt-in link. The newsletter registration details are neither necessary to enter into a contract with us nor legally binding. They are used exclusively for sending our newsletter. If you do not fill in the necessary information, we will unfortunately not be able to provide you with our newsletter service.

Integration of external web services and processing of data outside the EU

On our website, we use active content from external providers, so-called web services. When you visit our website, these external providers may receive personal information about your visit to our website. This may involve the processing of data outside the EU. You can prevent this by installing an appropriate browser plug-in or deactivating the execution of scripts in your browser. This may result in functional restrictions on websites that you visit.

We use the following external web services:

Amazon CloudFront (CDN)

Our site uses the Amazon CloudFront (CDN) service provided by Amazon Web Services EMEA SARL, 38 avenue John F. Kennedy, L-1855 Luxembourg, Luxembourg, e-mail: privacyshield@amazon.com, website: https://aws.amazon.com/de/cloudfront/.

Amazon Web Services is certified under the EU-U.S. Data Privacy Framework Agreement.

The legal basis for the transfer of personal data is our legitimate interest in processing pursuant to Art. 6 (1) lit. f GDPR. Our legitimate interest is to achieve the purpose described below.

Amazon CloudFront CDN is a content delivery network that mirrors our content across multiple servers to ensure optimal accessibility worldwide.

With regard to the processing, you have the right to object in accordance with Art. 21. You will find more detailed information at the end of this Privacy Policy.

For more information on the treatment of data transmitted, please consult the privacy policy of the supplier at https://aws.amazon.com/de/privacy/?nc1=f_pr.

Webflow

Our website uses the webflow service provided by Webflow, Inc, 398 11th St, Floor 2, 94103 San Francisco, California, United States, e-mail: privacy@webflow.com, website: https://webflow.com/.

Webflow is certified under the EU-U.S. Data Privacy Framework Agreement.

The legal basis for the transfer of personal data is your consent pursuant to Art. 6 para. 1 lit. a GDPR which you have given on our website.

The service used serves to display our website, as it is the host of our website.

You may withdraw your consent at any time. More information on how to withdraw your consent can be found either in the consent itself or at the end of this privacy policy.

For further information on the handling of the data provided, please refer to the provider's privacy policy at https://webflow.com/legal/privacy.

Data security and data protection, communication by e-mail

Your personal data will be protected by technical and organisational measures during collection, storage and processing so that it cannot be accessed by third parties. In the case of unencrypted communication by e-mail, we cannot guarantee complete data security during transmission to our IT systems, so we recommend that you use encrypted communication or the post for information requiring a high level of confidentiality.

Automatic e-mail archiving

Scope of the processing of personal data

We expressly point out that our mail system has an automated archiving procedure. All incoming and outgoing e-mails are digitally archived in an audit-proof manner.

Legal basis for the processing of personal data

Art. 6 para. 1 lit. c GDPR (legal obligation). The legal obligation consists of compliance with tax and commercial law requirements (e.g. Sec. 146, 147 German Fiscal Code, Sec. 238, 257 German Commercial Code).

Purpose of the data processing

The purpose of archiving is to comply with tax law requirements (e.g. Sec. 146, 147 German Fiscal Code - obligation to retain e-mails of relevance to tax law) and commercial law requirements (e.g. Sec. 238, 257 German Commercial Code - obligation to archive business correspondence).

Duration of storage

Our mail communication is stored until the expiry of storage obligations under tax and commercial law. The storage period can be up to 10 years.

Possibility of objection and deletion

You can object to the processing at any time in accordance with Article 21 of the GDPR and request the deletion of data in accordance with Article 17 of the GDPR. You can find out which rights you have and how to exercise them at the bottom of this privacy policy.

Right to information and correction requests - Deletion & restriction of data - Revocation of consent - Right of objection

Right to information

You have the right to obtain confirmation as to whether we are processing your personal data. If this is the case, you have the right to obtain the information specified in Art. 15 (1) of the GDPR, provided that the rights and freedoms of other persons are not affected (cf. Art. 15 (4) of the GDPR). We will also be happy to provide you with a copy of the data.

Right of rectification

According to Art. 16 of the GDPR, you have the right to have any incorrect personal data stored with us (such as address, name, etc.) corrected at any time. You may also at any time request that the data we hold about you be completed. Any such correction will be made immediately.

Right to erasure

According to Art. 17 (1) GDPR, you have the right to request that we delete the personal data we have collected about you if:

  • the personal data are no longer;
  • due to the withdrawal of your consent, the legal basis of the processing has ceased to exist without replacement;
  • you have objected to the processing and there are no legitimate grounds for processing;
  • your data is processed unlawfully;
  • a legal obligation requires it or a collection pursuant to Art. 8 (1) GDPR.

Pursuant to Art. 17 (3) of the GDPR, this right does not exist if

  • the processing is necessary for the exercise of the right to freedom of expression and information;
  • your data has been collected on the basis of a legal obligation;
  • the processing is necessary for reasons of public interest;
  • the data is necessary for the assertion, exercise or defence of legal claims.

Right to restrict processing

According to Art. 18 (1) GDPR, you have the right in individual cases to demand the restriction of the processing of your personal data.

This is the case if

  • the accuracy of the personal data is disputed by you;
  • the processing is unlawful and you do not consent to erasure;
  • the data are no longer necessary for the purposes of the processing, but the data collected are necessary for the establishment, exercise or defence of legal claims;
  • you have objected to the processing in accordance with Art. 21 (1) GDPR and it is still unclear which interests prevail.

Right of withdrawal

If you have given us your express consent to process your personal data (Art. 6 para. 1 lit. a GDPR or Art. 49 para. 1 lit. a GDPR), you may withdraw this consent at any time. Please note that this does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.

Right to object

In accordance with Art. 21 GDPR, you have the right at any time to object to the processing of personal data concerning you that has been collected on the basis of Art. 6 par. 1 lit. f (in the context of a legitimate interest). You have this right only if there are special circumstances that oppose the storage and processing.

How do you exercise your rights?

You can exercise your rights at any time by contacting us using the contact details below:

AMPHOS GmbH
Kaiserstraße 100
52134 Herzogenrath
Germany
Email: info@amphos.de
Phone.: +49 241 565292-10

Right to data portability

According to Art. 20 GDPR, you have the right to obtain the personal data concerning you. We will provide the data in a structured, common and machine-readable format. The data may be sent either to you or to a data processor designated by you.

Upon request, we will provide you with the following data pursuant to Art. 20 para. 1 GDPR:

  • Data collected on the basis of explicit consent pursuant to Art. 6 para. 1 lit. a GDPR;
  • Data that we have received from you in accordance with Art. 6 Para. 1 lit. b GDPR within the framework of existing contracts;
  • Data that have been processed within the framework of an automated procedure.

We will transfer the personal data directly to a data controller of your choice as far as this is technically feasible. Please note that we are not permitted to transfer data that interferes with the freedoms and rights of other persons pursuant to Art. 20 (4) of the GDPR.

Right to lodge a complaint with the supervisory authority pursuant to Art. 77 (1) GDPR

Of course, if you suspect that your data is being processed unlawfully on our site, you can always take the matter to court. You also have all other legal remedies available to you. Irrespective of this, you have the option of contacting a supervisory authority in accordance with Art. 77 (1) GDPR. The right to complain pursuant to Art. 77 GDPR is available to you in the EU Member State of your residence, your place of work and/or the place of the alleged infringement, i.e. you can choose the supervisory authority to which you turn from the above-mentioned places. The supervisory authority to which the complaint has been submitted will then inform you of the status and outcome of your complaint, including the possibility of a judicial remedy pursuant to Art. 78 GDPR.

The competent supervisory authority for AMPHOS GmbH is:

Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen

Kavalleriestr. 2-4

40213 Düsseldorf

Germany

Phone: 0211/38424-0

Fax: 0211/38424-999

E-Mail: poststelle@ldi.nrw.de

Privacy policy

Thank you for visiting our website amphos.de and for your interest in our company.

The protection of your personal data, such as date of birth, name, telephone number, address, etc., is important to us.

The purpose of this privacy policy is to inform you about the processing of your personal data that we collect from you when you visit our website. Our data protection practice is in accordance with the legal regulations of the EU's General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG). The following data protection declaration serves to fulfil the information obligations resulting from the GDPR. These can be found, for example, in Art. 13 and Art. 14 ff. GDPR.

Responsible person

The controller within the meaning of Art. 4 No. 7 GDPR is the person who alone or jointly with others determines the purposes and means of the processing of personal data.

With regard to our website, the responsible person is:

AMPHOS GmbH
Kaiserstraße 100
52134 Herzogenrath
Germany
E-mail: info@amphos.de
Tel: +49 241 565292-10
Fax: +49 241 565292-99

Contact details of the data protection officer

We have appointed a data protection officer in accordance with Art. 37 of the GDPR. You can reach our data protection officer under the following contact details:

Kaiserstraße 100
52134 Herzogenrath
Germany
E-mail: privacy@trumpf.com

Provision of the website and creation of log files

Each time our website is accessed, our system automatically collects data and information from the device (e.g. computer, mobile phone, tablet, etc.) used to access it.

What personal data is collected and to what extent is it processed?

(1) Information about the browser type and version used;
(2) The operating system of the retrieval device;
(3) Host name of the accessing computer;
(4) The IP address of the retrieval device;
(5) Date and time of access;
(6) Websites and resources (images, files, other page content) accessed on our website;
(7) Websites from which the user's system accessed our website (referrer tracking);
(8) Message whether the retrieval was successful;
(9) Amount of data transmitted

This data is stored in the log files of our system. This data is not stored together with the personal data of a specific user, so that individual site visitors cannot be identified.

Legal basis for the processing of personal data

Art. 6 para. 1 lit. f GDPR (legitimate interest). Our legitimate interest is to ensure the achievement of the purpose described below.

Purpose of the data processing

The temporary (automated) storage of the data is necessary for the course of a website visit to enable delivery of the website. The storage and processing of personal data is also carried out to maintain the compatibility of our website for as many visitors as possible and to combat abuse and eliminate malfunctions. For this purpose, it is necessary to log the technical data of the accessing computer in order to be able to react as early as possible to display errors, attacks on our IT systems and/or errors in the functionality of our website. In addition, we use the data to optimise the website and to generally ensure the security of our information technology systems.

Duration of storage

The deletion of the aforementioned technical data takes place as soon as they are no longer required to ensure the compatibility of the website for all visitors, but no later than 3 months after accessing our website.

Possibility of objection and deletion

You can object to the processing at any time in accordance with Article 21 of the GDPR and request the deletion of data in accordance with Article 17 of the GDPR. You can find out which rights you have and how to exercise them at the bottom of this privacy policy.

Special functions of the website

Our site offers you various functions, during the use of which personal data is collected, processed and stored by us. We explain below what happens to this data:

Contact form(s)

  • What personal data is collected and to what extent is it processed?

    We will process the data you have entered in the input mask of our contact forms to fulfil the purpose stated below.

  • Legal basis for the processing of personal data

    Art. 6 para. 1 lit. a GDPR (consent through clear confirming action or behaviour)

  • Purpose of the data processing

    We will only use the data recorded via our contact form or contact forms for processing the specific contact enquiry received through the contact form.

  • Duration of storage

    After processing your request, the collected data will be deleted immediately, unless there are legal retention periods.

  • Revocation and deletion option

    The revocation and deletion options are based on the general regulations on the right of revocation and deletion under data protection law described below in this data protection declaration.

  • Necessity of providing personal data

    The use of the contact forms is on a voluntary basis and is neither contractually nor legally required. You are not obliged to contact us via the contact form, but can also use the other contact options provided on our site. If you wish to use our contact form, you must fill in the fields marked as mandatory. If you do not fill in the required information on the contact form, you will either not be able to send the enquiry or we will unfortunately not be able to process your enquiry.

Newsletter registration form

  • What personal data is collected and to what extent is it processed?

    By registering for the newsletter on our website, we receive the e-mail address entered by you in the registration field and, if applicable, further contact data, provided that you communicate this to us via the newsletter registration form.

  • Legal basis for the processing of personal data

    Art. 6 para. 1 lit. a GDPR (consent through clear confirming action or behaviour)

  • Purpose of the data processing

    The data recorded in the registration mask of our newsletter will be used by us exclusively for sending our newsletter, in which we inform you about all our services and our news. After registration, we will send you a confirmation e-mail containing a link that you must click to complete the registration for our newsletter (double opt-in).

  • Duration of storage

    You can unsubscribe from our newsletter at any time by clicking on the unsubscribe link, which is also included in every newsletter. Your data will be deleted by us immediately after unsubscription. Likewise, your data will be deleted by us immediately in the event that your subscription is not completed. We reserve the right to delete without giving reasons and without prior or subsequent information.

  • Revocation and removal option

    You can revoke your consent at any time in accordance with Art. 7 (3) GDPR. However, the processing carried out up to the time of the revocation remains unaffected by this. With regard to the other rights, we refer to the overview at the end of this data protection declaration.

  • Necessity of providing personal data

    If you would like to use our newsletter, you must fill in the fields marked as mandatory and confirm your e-mail address by clicking on the double opt-in link. The newsletter registration details are neither necessary to enter into a contract with us, nor are they legally binding. They are used exclusively for sending our newsletter. If you do not fill in the necessary information, we will unfortunately not be able to provide you with our newsletter service.

Statistical analysis of visits to this website - Webtracker

We collect, process and store the following data when this website or individual files on the website are accessed: IP address, website from which the file was accessed, name of the file, date and time of access, amount of data transferred and report on the success of the access (so-called web log). We use this access data exclusively in a non-personalised form for the continuous improvement of our website and for statistical purposes. We also use the following web trackers to evaluate visits to this website:

  • Plausible

    We use the service Plausible of the company Plausible Insights OÜ, Västriku tn 2, 50403 Tartu, Estonia on our site. Personal data is transmitted exclusively to servers in the European Union.

    The legal basis for the processing of personal data is your consent pursuant to Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.

    With the help of Plausible, we can analyse user flows and interactions on our site in order to permanently improve our site.

    You can revoke your consent at any time. You will find more information on revoking your consent either with the consent itself or at the end of this privacy policy.

    For further information on the handling of transmitted data, please refer to the provider's privacy policy at https://plausible.io/data-policy.

Integration of external web services and processing of data outside the EU

On our website, we use active content from external providers, so-called web services. When you visit our website, these external providers may receive personal information about your visit to our website. This may involve the processing of data outside the EU. You can prevent this by installing an appropriate browser plug-in or deactivating the execution of scripts in your browser. This may result in functional restrictions on websites that you visit.

We use the following external web services:

  • Amazon CloudFront (CDN)

    We use on our site the service Amazon CloudFront (CDN) of the company Amazon Web Services EMEA SARL, 38 avenue John F. Kennedy, L-1855 Luxembourg, Luxembourg, e-mail: privacyshield@amazon.com, website: https://aws.amazon.com/de/cloudfront/. Personal data is also transferred to the U.S. With regard to the transfer of personal data to the U.S., there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 of the GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.

    The legal basis for the processing of personal data is our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR. Our legitimate interest lies in achieving the purpose described below.

    Amazon CloudFront CDN is a content delivery network that mirrors our content across multiple servers to ensure optimal accessibility worldwide.

    You can access the provider's certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list.

    With regard to the processing, you have the right to object as set out in Art. 21. You can find more information at the end of this privacy policy.

    For further information on the handling of transmitted data, please refer to the provider's privacy policy at https://aws.amazon.com/de/privacy/?nc1=f_pr.

  • Rechtstextsnippet und Module

    We use on our site the service Rechtstextsnippet und Module of the company Website-Check GmbH, Beethovenstraße 24, 66111 Saarbrücken, Germany, e-mail: support@website-check.de, website: https://www.website-check.de/. Personal data is transmitted exclusively to servers in the European Union.

    The legal basis for the processing is Art. 6 para. 1 lit. c GDPR. The use of the service helps us to comply with our legal obligations.

    With the help of the service, the contents of our legal texts are reloaded on our website. The respective current legal texts are reloaded via the integration on our page. This integration may also be used to reload further technical modules with regard to the legal texts or legally required elements.

    You can find out what rights you have with regard to processing at the end of this privacy policy.

    For further information on the handling of transmitted data, please refer to the provider's privacy policy at https://www.website-check.de/datenschutzerklaerung/.

  • Webflow

    We use on our site the service Webflow of the company Webflow, Inc., 398 11th St, Floor 2, 94103 San Francisco, United States, e-mail: privacy@webflow.com, website: https://webflow.com/. Personal data is also transferred to the U.S. With regard to the transfer of personal data to the U.S., there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 of the GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.

    The legal basis for the processing of personal data is your consent pursuant to Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.

    The service used is for displaying our website, as it is the hoster of our website.

    You can access the provider's certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list.

    You can revoke your consent at any time. You will find more information on revoking your consent either with the consent itself or at the end of this privacy policy.

    For further information on the handling of transmitted data, please refer to the provider's privacy policy at https://webflow.com/legal/eu-privacy-policy.

Data security and data protection, communication by e-mail

Your personal data is protected by technical and organisational measures during collection, storage and processing so that it is not accessible to third parties. In the case of unencrypted communication by e-mail, we cannot guarantee complete data security on the transmission path to our IT systems, so that we recommend encrypted communication or the postal service for information requiring a high level of confidentiality.

Automatic e-mail archiving

  • Scope of the processing of personal data

    We expressly point out that our mail system has an automated archiving procedure. All incoming and outgoing e-mails are digitally archived in an audit-proof manner.

  • Legal basis for the processing of personal data

    Art. 6 para. 1 lit. c GDPR (legal obligation). The legal obligation consists of compliance with tax and commercial law requirements (e.g. §§ 146, 147 AO, §§ 238, 257 HGB).

  • Purpose of the data processing

    The purpose of archiving is to comply with tax law requirements (e.g. §§ 146, 147 AO - obligation to retain e-mails of relevance to tax law) and commercial law requirements (e.g. §§ 238, 257 HGB - obligation to archive business correspondence).

  • Duration of storage

    Our mail communication is stored until the expiry of storage obligations under tax and commercial law. The storage period can be up to 10 years.

  • Possibility of objection and deletion

    You can object to the processing at any time in accordance with Article 21 of the GDPR and request the deletion of data in accordance with Article 17 of the GDPR. You can find out which rights you have and how to exercise them at the bottom of this privacy policy.

  • Dealing with application documents

    If you have any questions regarding our e-mail archiving system, please contact our data protection officer. In addition, we would like to point out that we only consider application documents in PDF file format. Zipped files (WinZip, WinRAR, 7Zip, etc.) are filtered out by our security systems and will not be delivered. We do not consider applications in Word file format and other file formats and delete them unread. Please note that application documents sent by e-mail without encryption may be opened by third parties before they reach our IT systems. We assume that we may also reply to unencrypted application e-mails unencrypted. If you do not wish this, please let us know in your application e-mail.

Right to information and correction requests - Deletion & restriction of data - Revocation of consent - Right to object

Right to information

You have the right to request confirmation as to whether we are processing your personal data. If this is the case, you have the right to be informed about the information named in Art. 15 (1) of the GDPR, insofar as the rights and freedoms of other persons are not affected (cf. Art. 15 (4) of the GDPR). We will also be happy to provide you with a copy of the data.

Right of rectification

In accordance with Article 16 of the GDPR, you have the right to have any incorrect personal data stored with us (e.g. address, name, etc.) corrected at any time. You can also request that the data stored with us be completed at any time. A corresponding adjustment will be made immediately.

Right to erasure

Pursuant to Art. 17 (1) of the GDPR, you have the right to demand that we delete the personal data we have collected about you if

  • the data is either no longer required;
  • the legal basis for the processing has ceased to exist without replacement due to the withdrawal of your consent;
  • You have objected to the processing and there are no legitimate grounds for processing;
  • Your data is processed unlawfully;
  • a legal obligation requires this or a collection pursuant to Art. 8 (1) GDPR has taken place.

Pursuant to Article 17 (3) of the GDPR, this right does not exist if

  • processing is necessary for the exercise of the right to freedom of expression and information;
  • Your data have been collected on the basis of a legal obligation;
  • processing is necessary for reasons of public interest;
  • the data are necessary for the assertion, exercise or defence of legal claims.

Right to restriction of processing

According to Art. 18 (1) GDPR, you have the right in individual cases to demand the restriction of the processing of your personal data.

This is the case when

  • the accuracy of the personal data is disputed by you;
  • the processing is unlawful and you do not consent to its erasure;
  • the data is no longer needed for the purpose of processing, but the collected data is used for the assertion, exercise or defence of legal claims;
  • an objection to the processing has been lodged pursuant to Art. 21 (1) GDPR and it is still unclear which interests prevail.

Right of withdrawal

If you have given us express consent to process your personal data (Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR), you can revoke this consent at any time. Please note that the lawfulness of the processing carried out on the basis of the consent until the revocation is not affected by this.

Right to object

In accordance with Art. 21 of the GDPR, you have the right to object at any time to the processing of personal data relating to you that has been collected on the basis of Art. 6 (1) (f) (in the context of a legitimate interest). You only have this right if there are special circumstances against the storage and processing.

How do you exercise your rights?

You can exercise your rights at any time by contacting us using the contact details below:

AMPHOS GmbH
Kaiserstraße 100
52134 Herzogenrath
Germany
E-mail: info@amphos.de
Tel: +49 241 565292-10
Fax: +49 241 565292-99

Right to data portability

Pursuant to Article 20 of the GDPR, you have a right to the transfer of personal data relating to you. We will provide the data in a structured, common and machine-readable format. The data can be sent either to you or to a person responsible named by you.

We provide you with the following data upon request pursuant to Art. 20 para. 1 GDPR:

  • Data collected on the basis of explicit consent pursuant to Art. 6 (1) lit. a GDPR or Art. 9 (2) lit. a GDPR;
  • Data that we have received from you in accordance with Art. 6 Para. 1 lit. b GDPR within the scope of existing contracts;
  • Data that has been processed within the scope of an automated procedure.

We will transfer the personal data directly to a data controller of your choice as far as this is technically feasible. Please note that we are not permitted to transfer data that interferes with the freedoms and rights of other persons pursuant to Art. 20 (4) of the GDPR.

Right of appeal to the supervisory authority pursuant to Art. 77 para. 1 GDPR

If you suspect that your data is being processed illegally on our site, you can of course have the issue clarified by the courts at any time. In addition, any other legal option is open to you. Irrespective of this, you have the option of contacting a supervisory authority in accordance with Article 77 (1) of the GDPR. The right of complaint pursuant to Art. 77 GDPR is available to you in the EU Member State of your place of residence, your place of work and/or the place of the alleged infringement, i.e. you can choose the supervisory authority to which you turn from the above-mentioned places. The supervisory authority to which the complaint has been submitted will then inform you of the status and outcome of your submission, including the possibility of a judicial remedy pursuant to Art. 78 GDPR.