Thank you for your interest in our company. Data protection is a particularly high priority for the management of VDI/VDE Innovation + Technik GmbH. The webpages of VDI/VDE Innovation + Technik GmbH can be used without having to specify any personal data. However, should a data subject wish to use special enterprise services through our website, the processing of personal data may be required. Should the processing of personal data be necessary and there is no legal basis for such processing, we will generally ask the data subject for consent.
The processing of personal data, such as the name, address, email address, or telephone number of a data subject will always be in accordance with the General Data Protection Regulation (GDPR) and the country-specific data protection laws applicable to VDI/VDE Innovation + Technik GmbH. The purpose of this data protection statement is to inform the general public of the nature, scope, and purpose of the personal data we collect, use and process. This statement also informs data subjects of the rights they are entitled to.
As the controller, VDI/VDE Innovation + Technik GmbH has implemented numerous technical and organisational measures to ensure the best possible protection of personal data processed through this website. However, the electronic transmission of data can, in principle, have security gaps, meaning that absolute protection cannot be guaranteed. For this reason, every data subject is free to transfer personal data to us through alternative means, for example, by telephone.
VDI/VDE Innovation + Technik GmbH’s data protection statement is based on the terms used by the European legislator for the adoption of the General Data Protection Regulation (GDPR). Our data protection statement should be clear and understandable to the general public, as well as our customers and business partners. To ensure this, we will start with an explanation of the terminology we use.
2. Name and address of the controller
For the purposes of the General Data Protection Regulation (GDPR), other data protection laws applicable in EU Member states and other provisions related to data protection, the controller is:
3.1 Technical cookies
Most of the cookies that we use are technical cookies that enable you to use our website and the services we offer on it. Some of the features on our website require the browser to be identified even after moving on to a new page.
For the stated purposes, our legitimate interest is in data processing; the legal basis is Art 6, par 1, (f) GDPR. The data are not combined with any other personal information and are not used for promotion purposes. Session cookies are deleted at the end of every browser session, and at the latest within seven days.
Analytics cookies (Matomo)
We also use analytics cookies to analyse how users interact with our website (user behaviour). These cookies enable us to recognise returning users, analyse their interaction with our website, optimise our website and measure its reach. For these purposes, our legitimate interest is in data processing; the legal basis is Art 6, par 1, point (f) GDPR.
For the web analysis, we use the web analysis software Matomo (www.matomo.org). The cookies used by the software store your interaction with our website (anonymised IP address (removal of the last octet); user ID; date and time; title and URL of the pages visited; page from which you accessed this page ('referrer URL'); resolution of your computer screen; time in your time zone; viewed and downloaded files; clicked links to other websites; time it took for the page to load; city from which you are visiting our website; language settings, name and version of your browser) in pseudonymous user profiles. Data that are collected with the Matomo technology (including your anonymised IP address) are processed on our servers.
The information generated by the cookie and stored in pseudonymous user profiles is not used to personally identify a person visiting the website. It is not combined with personal data about the pseudonymised user.
If you do not agree with the storing and analysis of the information generated by your visit, you can object to the storing and use of the data at any time with a click of the mouse. In this case, an opt-out cookie will be stored in your browser and Matomo will stop collecting session data. Please note that deleting all of your cookies also deletes the opt-out cookie and that you may have to reactivate it.
Alternatively, you can check the 'Do not track' option in your web browser, which our website respects.
You can permanently prevent our website from storing cookies in your web browser at any time by checking the corresponding setting in your web browser. In addition, cookies that are already stored in your web browser can be deleted at any time using a web browser or other software programs. This feature is available in all of the popular web browsers. For help on changing your cookie settings, click on the help in your web browser. More information about this topic and cookies in general can be found at http://www.youronlinechoices.com and http://www.allaboutcookies.org.
Please note that you might not be able to use all of the functions and features offered on our website and that some pages may not display properly if you do not accept cookies.
4. Collection of general data and information (log files)
VDI/VDE Innovation + Technik GmbH's website collects a variety of general data and information every time a data subject or an automated system visits the website. These general data and information are stored on the server in log files. The following information can be collected:
- user browser types and versions;
- operating system of the requesting system;
- webpage from which a requesting system accesses our webpage (referrer);
- subordinate webpages on our website that are accessed by a requesting system;
- date and time the webpage is requested;
- internet service provider of the requesting system;
- other similar data and information that are used in the event of an attack on our information technology systems.
The use of these general data and information does not enable VDI/VDE Innovation + Technik GmbH to trace the data back to the data subject. Rather, this information is needed to:
- ensure the contents of our website work properly;
- optimise the contents of our website and its promotion;
- ensure the continued functioning of our information technology systems and the technology of our website as well as to
- provide law enforcement agencies with the necessary information for prosecution in the event of a cyberattack.
VDI/VDE Innovation + Technik GmbH analyses these anonymously collected data and information statistically and with the goal of increasing data protection and data security in our company with the aim of ensuring the highest level of protection possible for the personal data we process.
For the stated purposes, our legitimate interest is in data processing; the legal basis is Art 6, par 1, point (f) GDPR.
The anonymous data in the server log files are stored separately from the personal data provided by a data subject. The log files are deleted at the end each browser session and at the latest after seven days, unless their further storage is required for the above purposes.
5. Processing of data that you provide to us
On the grounds of legal regulations, VDI/VDE Innovation + Technik GmbH's website contains information that enables you to contact us quickly through electronic means and to communicate directly with us, which also includes the provision of a general email address. If you contact us by email or by submitting a contact form (for example, to order a publication), the personal data you voluntarily submit will be automatically saved.
We process your data to answer your inquiry; the legal basis is Art 6, par 1, point (f) GDPR (our legitimate interest is in answering your inquiry). Insofar as the processing of data is required for the performance of pre-contractual measures (for example, for inquiries about our products or services) or the performance of a contract, the legal basis is also Art 6, par 1, point (f) GDPR.
The data from your inquiries will be deleted when the respective conversation ends and the issue in question has been resolved and legal, statutory or contractual retention periods have expired. The retention periods apply in particular if your inquiry resulted in a contract with us (Art 147 par 1, par 3 AO (German revenue code), Art 257 par 1, par 4 HGB (German commercial code): 6-year retention period for correspondence relating to the formation of a contract, 10-year retention period for journal vouchers).
6. Passing on your data
At VDI/VDE Innovation + Technik GmbH, access to your personal data will be granted to the departments that need it to perform our contractual and legal obligations.
We also pass on personal data when we are required to do so by law (Art 6, par 1, point (c) GDPR) or the data subject has given his or her consent to the processing (Art 6, par 1, point (a) GDPR). Under these conditions, recipients of personal data may, for example, be public authorities and institutions in the event of a legal or regulatory obligation.
7. Your data protection rights
You have the right to obtain from VDI/VDE Innovation + Technik GmbH access to your personal data (Art 15 GDPR), the rectification of your personal data (Art 16 GDPR), the erasure of your personal data (Art 17 GDPR), the restriction of the processing of your personal data (Art 18 GDPR) and the portability of your personal data (Art 20 GDPR). The right of access and the right to erasure are subject to the restrictions in Art 34 and 35 German Data Protection Act.
You also have the right to object to the processing of your personal data by VDI/VDE Innovation + Technik GmbH (Art 21 GDPR).
Insofar as the processing of your personal data by VDI/VDE Innovation + Technik GmbH is based on consent (Art 6, par (1), point (a) GDPR), you can withdraw the consent at any time; the legality of the data processing performed on the basis of the consent remains unaffected until the consent is revoked.
Should you wish to assert these rights or have any questions concerning personal data, please do not hesitate to contact us at any time by email at Datenschutz@vdivde-it.de or using the contact information provided in Section 2.
Irrespective of this, you have the right to lodge a complaint with a supervisory authority - in particular in the EU Member State in which you reside, or work or the place of the alleged infringement - if you believe that the processing of your personal data violates the GDPR or other applicable data protection laws (Art 77 GDPR, Art 19 German Data Protection Act).
8. Obligation to provide data
As part of our business relationship, our processors must provide only those personal data that are needed to establish, conduct and terminate a business relationship or that we are required to collect by law. Without these data, we will be obliged to refuse entering into a contract or executing an order or may not be able to continue executing an existing contract and may even have to terminate it.
The provision of personal data is in part required by law (e.g. tax regulations) or may arise from contractual agreements (e.g. the processor's information).
9. No automated individual decision-making (Art 22 par 1 and 4 GDPR)
As a responsible company we refrain from automatic decision-making or profiling.
10. Third-party providers
VDI/VDE-IT GmbH is represented on the following social media and multimedia channels: LinkedIn, Xing, Twitter and YouTube. On these platforms, third-party content is integrated using ‘embed code’. In order to do this, the providers of the content (hereinafter referred to as ‘third-party provider’) must know the IP address of the users. Without the IP address, the content cannot be sent to the client, the user's browser.
VDI/VDE-IT GmbH has no influence on whether a third-party provider stores the IP address, for example, for statistical purposes or cookies on the user’s computer.
We also use a frame to display our locations. This service is provided by OpenStreetMap. The OpenStreetMap Community does not share the personal information required to display the cards, such as IP addresses, with third parties.