We welcome you to our website. We would like to inform you about the management of your personal data in accordance with Art. 13 General Data Protection Regulation (GDPR).
The controller responsible for the described data collection and processing is
NordCap GmbH & Co. KG
When you visit our website, the data collected from the use of the website is tempo-rarily stored on our web server for statistical purposes in order to improve the quality of our website. This data set contains:
- the page, from which the data is requested
- the name of the data file,
- the date and time of the query,
- the amount of data transferred,
- the access status (file transmitted, file not found),
- a description of the type of browser used,
- the IP address of the requesting computer shortened to such an extent that no reidentification of any persona data is possible.
The listed usage data is stored anonymously.
2. Explanation of Data Security Measures
To avoid unauthorized access to your data, we have implemented technical and organisational measures. We use encryption technologies on our website. Your data will be transferred to our servers and back again via a connection that is protected by a TLS encryption technology. You can recognize that you are browsing on an encryption secured website by the lock-symbol shown in the address bar of your browser and by the address bar starting with .
3. Data Transfer to Third Parties
Data Transfer to Third Parties
We transfer your data to service providers who support us in the operation of our website and the associated processes. This transference is made under the scope of a data processing agreement in accordance to Art. 28 GDPR. Our service providers are bound to us by strict instructions and contractual obligations. We use the following service providers: PlusServer GmbH as hosting-service provider and construktiv GmbH as webs-ite developer.
Data Transfer to Third Countries (Non-EU Countries)
In some cases, we may transfer personal data to third countries outside the EU. In each case, we ensure an appropriate level of data protection according to European standards.
In the case of Google Analytics (USA), an appropriate level of data protection is en-sured by the corresponding participation in the Privacy Shield Agreement (Art. 45 para. 1 GDPR).
We use session cookies and permanent cookies on our website. The data is processed in accordance to Art. 6 para. 1 s. 1 lit. f GDPR and in the interest of optimising or enabling user guidance and improving our website presence.
We use Google Analytics to create pseudonymous user profiles for improving and designing our website on demand. Google Analytics uses “cookies”, which are text files placed on your end device and can be read by us. In this way, we are able to recog-nize and count returning visitors. This data processing is carried out on the basis of Art. 6 para. 1 s. 1 lit. f GDPR or § 15 para. 3 TMG and in the interest of finding out how often our website is viewed by different users.
The information generated by the cookies about your use of the website will be transmitted to and stored by Google on its servers in the United States. We have activated IP-anonymization on this website, your IP address will be truncated within the area of Member States of the European Union. Only in exceptional cases is the whole IP ad-dress transferred to a Google server in the USA and truncated there (an adequate level of data protection is ensured according to Art. 45 para. 1 GDPR because Google is a participant in the Privacy Shield Agreement). We have also concluded a contract with Google Inc. (USA) for commissioned data processing pursuant to Art. 28 GDPR. Accordingly, Google will solely use collected data for the purposes intended, which are to evaluate the use of the website and to compile reports on website activities.
You can withdraw your consent to the processing at any time. Please use one of the following options:
You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by downloading and installing the browser plug-in available under the following link (http://tools.google.com/dlpage/gaoptout?hl=de).
As an alternative to opting out from being tracked by Google Analytics you can also click the following link. An opt-out cookie will be stored, which means that no web analysis will take place as long as the opt-out cookie is stored by your browser:Disable Google Analytics
6. Rights as a User
Your Rights as a User
As a website user, the GDPR grants you certain rights when processing your personal data.
- Right of access (Art. 15 GDPR):
You have the right to obtain confirmation at to whether or not personal data concerning you is being processed, and, where that is the case access to the personal data and the information specified in Art. 15 GDPR.
- Right to rectification and erasure (Art. 16 and 17 GDPR):
You have the right to obtain without undue delay the rectification of inaccurate per-sonal data concerning you and, if necessary, the right to have incomplete personal data completed.
You also have the right to obtain an erasure of the personal data concerning you without undue delay, if one of the reasons listed in Art. 17 GDPR applies, e.g. if the data is no longer necessary for the intended purpose.
- Right to restriction of processing (Art. 18 GDPR):
If one of the conditions set forth in Art. 18 GDPR applies, you shall have the right to restrict the processing of your data to mere storage, e.g. if you revoke consent, to the processing, for the duration of a possible examination.
- Right to data portability (Art. 20 GDPR):
In certain situations, listed in Art. 20 GDPR, you have the right to receive the personal data concerning you in a structured, common and machine-readable format or demand a transmission of the data to another third party.
- Right to object (Art. 21 GDPR):
If the data is processed pursuant to Art. 6 para. 1 s. 1 lit. f GDPR (data processing for the purposes of the legitimate interests), you have the right to object to the processing at any time for reasons arising out of your particular situation. We will then no longer process personal data, unless there are demonstrably compelling legitimate grounds for processing, which override the interests, rights and freedoms of the person concerned, or the processing serves the purpose of asserting, exercising or defending legal claims.
- Right to lodge a complaint with a supervisory authority
Pursuant to Art. 77 GDPR, you have the right to lodge a complaint with a supervisory authority if you consider the processing of the data concerning you infringes data pro-tection regulations. The right to lodge a complaint may be invoked in particular in the Member State of your habitual residence, place of work or the place of the alleged infringement.
7. Restricted Access Area
Restricted Access Area
In case you want to participate in our NordCap Dealer Portal, you must register before-hand. We process the following data: name of your company, address and your name according to Art. 6 par. 1 s. 1 lit. b GDPR. Data transferred to us in the context of the registration will be used in order to process your request. You can change your profile within your account at any time. Data will then be deleted from the system automatically, if there are no retention requirements or the data is not required on an individual case basis (e.g. in the case of open claims).
8. Fill-in Forms on the Website
Different Possibilites of Contact
You can contact us via a contact respectively request form, through our call-back-service or by leaving a comment in our web blog.
In order to use our different possibilities of contact we require your personal data. Some of that data is obligatory. You may provide us with further information than that, but you are not obligated to do so. Some of the data is obligatory as we need to be able identify which of our offices is relevant for your request. In the case of our web blog we need to be able to react to your comment accordingly.
By submitting those forms you agree to the electronic collection and storage of your personal data. The legal basis for processing is Art. 6 para. 1 s. 1 lit. a GDPR. We use your data exclusively for the processing of your request. You may withdraw your consent at any time, e.g. via an email to datenschutz(at)nordcap.de.
9. Online Applications
If you apply via email we process your personal data in accordance with applicable data protection regulations pursuant to § 26 BDSG. We process the data you provide us in the context of your online application strictly for the purpose of selecting applicants. Data will not be processed for other purposes.
You determine the amount of data you want to send us in the context of your online application. Online applications are transferred electronically to our HR department and processed as quickly as possible. The transfer is encrypted. As a rule, applications are forwarded to the heads of the relevant departments in our company. Furthermore, your data will not be transferred to third parties. Your details will be treated confiden-tially in our company. If the application is unsuccessful, your documents will be deleted after 6 months.
If we may also consider your application for other or future job openings, please indicate this on your application. We will then process your data on the basis of Art. 6 para. 1 s. 1 lit. a GDPR. You are entitled to assert the same rights listed under 6. of this data policy.
10. Contact Details of the Data Protection Officer
Contact Details of the Data Protection Officer
Please contact our data protection officer if you have any further questions, suggestions or wishes regarding data protection:
Dr. Uwe Schläger
datenschutz nord GmbH
28217 Bremen, Germany
Telefon: +49 421 6966 32 0