Menu

Privacy

Privacy Policy

1. Data Protection at a Glance

General Information

The following information provides a simple overview of what happens to your personal data when you visit our website. Personal data is any data with which you can be personally identified. Detailed information on the subject of data protection can be found in our privacy policy listed below this text.

Data Collection on Our Website

Who is responsible for data collection on this website?
Data processing on this website is carried out by the website operator. You can find their contact details in the “Information about the Responsible Party” section of this privacy policy.

How do we collect your data?
Your data is collected in part by you providing it to us. This can be, for example, data that you enter into a contact form.
Other data is automatically collected or collected with your consent when you visit the website through our IT systems. These are mainly technical data (e.g., internet browser, operating system, or time of page access). This data is collected automatically as soon as you enter this website.

What do we use your data for?
Some of the data is collected to ensure the website is provided without errors. Other data may be used to analyze your user behavior.

What rights do you have regarding your data?
You have the right to receive information free of charge at any time about the origin, recipient, and purpose of your stored personal data. You also have the right to request the correction or deletion of this data. If you have given your consent to data processing, you may revoke this consent at any time for the future. Furthermore, under certain circumstances, you have the right to request the restriction of the processing of your personal data. You also have the right to lodge a complaint with the competent supervisory authority.

You can contact us at any time for this and for any further questions on the subject of data protection.

Analytics and Third-Party Tools

When visiting this website, your surfing behavior may be statistically evaluated. This happens mainly with so-called analysis programs.
Detailed information on these analysis programs can be found in the following privacy policy.

2. Hosting

We host the contents of our website with the following provider:

External Hosting

This website is hosted externally. The personal data collected on this website is stored on the servers of the hoster(s). This can include IP addresses, contact requests, meta and communication data, contract data, contact details, names, website accesses, and other data generated via a website.

External hosting is carried out for the purpose of fulfilling our contractual obligations toward our potential and existing customers (Art. 6 para. 1 lit. b GDPR) and in the interest of a secure, fast, and efficient provision of our online offer by a professional provider (Art. 6 para. 1 lit. f GDPR). If consent has been requested, processing takes place exclusively on the basis of Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user's terminal device (e.g., device fingerprinting) as defined by the TTDSG. The consent can be revoked at any time.

Our hoster(s) will only process your data to the extent necessary to fulfill their performance obligations and follow our instructions regarding this data.

3. General Notes and Mandatory Information

Data Protection

The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy.

When you use this website, various personal data is collected. Personal data is data that can be used to personally identify you. This privacy policy explains what data we collect and what we use it for. It also explains how and for what purpose this happens.

We would like to point out that data transmission over the Internet (e.g., communication by e-mail) may have security gaps. Complete protection of data against access by third parties is not possible.

Note on the Responsible Party

The responsible party for data processing on this website is:

Standard-Metallwerke GmbH
Rustigestraße 11
59457 Werl
Germany

Phone: +49 2922 808-0
Email: info@standardmetall.de

The responsible party is the natural or legal person who alone or jointly with others decides on the purposes and means of processing personal data (e.g., names, email addresses, etc.).

DATA PROTECTION INFORMATION FOR BUSINESS PARTNERS AND INTERESTED PARTIES

Information on data protection regarding how we process data from business partners and interested parties in accordance with Articles 13, 14, and 21 of the General Data Protection Regulation (GDPR)

Dear business partners, interested parties,
In accordance with the provisions of Articles 13, 14, and 21 of the General Data Protection Regulation (GDPR), we hereby inform you about the processing of your personal data and your rights in this regard under data protection laws. Which data is processed in detail and how it is used depends largely on the services requested or agreed. To ensure that you are fully informed about the processing of your personal data in the context of the performance of a contract or the implementation of pre-contractual measures, please note the following information.

1. CONTROLLER WITHIN THE MEANING OF DATA PROTECTION LAWS

Standard-Metallwerke GmbH
Rustigestraße 11
59457 Werl
02922 808-0
info@standardmetall.de
www.standardmetall.de

2. CONTACT DETAILS OF OUR DATA PROTECTION OFFICER

Datenschutz Soest GmbH & Co. KG
Roland Behmer
Westenhellweg 30
59494 Soest
datenschutzbeauftragter@datenschutz-soest.com

3. PURPOSES AND LEGAL BASIS OF PROCESSING

We process your personal data in accordance with the provisions of the European General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG) to the extent necessary for the establishment, execution, and fulfillment of a contract and for the implementation of pre-contractual measures. Insofar as personal data is required for the initiation or execution of a contractual relationship or in the context of the implementation of pre-contractual measures, processing is lawful according to Art. 6(1)(b) of the GDPR.
If you give us your express consent to process personal data for specific purposes (e.g. for disclosure to third parties, evaluation for marketing purposes, or advertising by email), the lawfulness of this processing is given on the basis of your consent pursuant to Art. 6(1)(a) of the GDPR. Consent given can be revoked at any time with effect for the future (see section 9 of this data protection information document).
If necessary and legally permissible, we process your data beyond the actual contractual purposes to fulfill legal obligations pursuant to Art. 6(1)(c) of the GDPR. In addition, processing may be carried out to protect the legitimate interests of us or third parties and to defend and assert legal claims in accordance with Art. 6(1)(f) of the GDPR. If necessary, we will inform you separately stating the legitimate interest to the extent required by law.

4. CATEGORIES OF PERSONAL DATA

We only process data gathered in connection with the establishment of the contract or the pre-contractual measures. This can include general data about you or persons in your company (name, address, contact details, etc.) and, if applicable, other data that you provide to us in the context of establishing the contract.

5. SOURCES OF THE DATA

We process personal data that we receive from you or that you provide via our sources in the context of establishing contact or a contractual relationship with you, or in the context of pre-contractual measures.

6. RECIPIENTS OF THE DATA

We disclose your personal data within our company exclusively to the areas and persons who need this data to fulfill contractual and legal obligations or based on our legitimate interest.
We may transfer your personal data to companies affiliated with us to the extent permitted within the scope of the purposes and legal basis stated in section 3 of this data protection information document.
Your personal data will be processed on our behalf on the basis of commissioned data processing in accordance with Art. 28 of the GDPR. In these cases, we ensure that the processing of personal data is carried out in accordance with the provisions of applicable data protection regulations. The categories of recipients in this case are providers of internet services and providers of customer management systems and software.
Otherwise, data will only be passed on to recipients outside the company if this is permitted or required by law, if the transfer is necessary for processing and thus for the performance of the contract or, at your request, for the implementation of pre-contractual measures, and if we have your consent or are authorized to provide your information. Under these conditions, examples of recipients of personal data could include, for example:
• External tax consultants
• Public bodies and institutions (e.g. public prosecutor’s office, police, supervisory authorities, tax office) if there is a legal or official obligation
• Recipients to whom the disclosure is necessary for the establishment or fulfillment of the contract
• Other data recipients for whom you have given us your consent to transfer data

7. TRANSFER TO A THIRD COUNTRY

A transfer to a third country is not intended.
Personal data will only be transferred to countries outside the EEA (European Economic Area) or to an international organization if this is necessary for processing and thus for the performance of the contract, or, at your request, for the implementation of pre-contractual measures, if the transfer is required by law or if you have given us your consent. Recipients in these cases may include local agencies, airlines, and hotels in the context of business trips.

8. DATA RETENTION PERIOD

Where necessary, we process and store your personal data for the duration of our business relationship or for the fulfillment of contractual purposes. Such purposes include, among other things, the initiation and execution of a contract.
In addition, we are subject to various retention and documentation obligations, including those arising from the German Commercial Code (HGB) and the German Fiscal Code (AO). The retention and documentation periods stipulated there are two to ten years.
Finally, the retention period also depends on the statutory limitation periods, which, for example according to section 195 ff. of the German Civil Code (BGB), are generally three years, but in certain cases can be up to thirty years.

9. YOUR RIGHTS

Every data subject has the right to access their information under Art. 15 of the GDPR, the right to rectification under Art. 16 of the GDPR, the right to erasure under Art. 17 of the GDPR, the right to restriction of processing under Art. 18 of the GDPR, the right to notification under Art. 19 of the GDPR, and the right to data portability under Art. 20 of the GDPR.
In addition, you have the right to lodge a complaint with a data protection supervisory authority under Art. 77 of the GDPR if you believe that your personal data is being processed unlawfully. The right to lodge a complaint is without prejudice to any other administrative or judicial remedy.
You can contact the responsible state supervisory authority as follows:
State Commissioner for Data Protection and Freedom of Information
North Rhine-Westphalia
Kavalleriestraße 2 – 4
40213 Düsseldorf
poststelle@ldi.nrw.de
If your data is processed based on your consent, you are entitled to withdraw your consent to the use of your personal data at any time according to Art. 7 of the GDPR. Please note that the withdrawal only applies to future processing. Processing that took place before withdrawal is not affected. Please also note that we may have to retain certain data for a certain period of time in order to comply with legal requirements (see section 8 of this data protection information document).
Right to object
Insofar as your personal data is processed pursuant to Art. 6(1)(f) of the GDPR to protect legitimate interests, you have the right to object to the processing of this data at any time according to Art. 21 of the GDPR for reasons arising from your particular situation. We will then no longer process this personal data unless we can demonstrate compelling legitimate reasons for the processing. These reasons must outweigh your interests, rights, and freedoms, or the processing must serve the assertion, exercise, or defense of legal claims.

10. NECESSITY TO PROVIDE PERSONAL DATA

The provision of personal data for the decision to conclude a contract, the fulfillment of a contract, or the implementation of pre-contractual measures is voluntary. However, we can only make a decision in the context of contractual measures if you provide the personal data necessary for the conclusion of the contract, for the fulfillment of the contract, or for the pre-contractual measures.

11. AUTOMATED DECISION-MAKING

In principle, we do not use fully automated decision-making processing according to Art. 22 of the GDPR to establish, fulfill, or implement the business relationship or for pre-contractual measures. If we should use these procedures in individual cases, we will inform you of this separately or obtain your consent if this is required by law.
05/05/2025
Standard-Metallwerke GmbH
Scroll to Top