Privacy policy
Your data is safe with us!
Thank you for visiting our website and for your interest in our company and our products. The protection of your privacy during your visit to our website is very important to us. This is why we always make every effort to comply with data protection laws and regulations.
The purpose of this privacy policy is to inform you when we store which data and for what purpose we use it - naturally in compliance with the applicable data protection regulations.
If you have any questions about the handling of your personal data, please feel free to contact our data protection officer, whose contact details you will find below.
Constant technological developments, changes in our services or the legal situation as well as other reasons may require adjustments to our privacy policy. We therefore reserve the right to change this privacy policy at any time and would ask that you keep yourself informed of the current status at regular intervals.
General information
Unless stated otherwise in the following sections, no personal data will be collected, processed or used when you use our website.
When you visit our website, our web servers collect information of a general nature automatically. This includes the type of web browser, the operating system used, the domain name of the internet service provider, the IP address of the computer used, the website from which you were forwarded to us, the pages viewed by you on our website and the date and duration of your visit.
We cannot use this data to identify individual users. The data is only analyzed by us for statistical purposes and used solely to enhance the appeal of our website, and to improve the content and features.
Definition of personal data
The EU General Data Protection Regulation (GDPR) defines personal data as:
Any information relating to an identified or identifiable natural person ("data subject"); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
Legal basis for the collection and processing of personal data
Where we obtain your consent for the processing of personal data, the legal basis for the processing of your personal data will be Article 6 (1) (a) GDPR.
Where processing is necessary for compliance with a legal obligation to which our company is subject, the legal basis for processing will be Article 6 (1) (c) GDPR.
Where processing is necessary for the purposes of the legitimate interests pursued by our company or by a third party and such interests are not overridden by the interests or fundamental rights and freedoms of the data subject, the legal basis for processing will be Article 6 (1) (f) GDPR.
Legal bases and retention periods
The legal bases for any potential processing of personal data and the retention periods of such vary and are described in the following sections.
Website analysis
To analyze and optimize our websites, we use various services, which are outlined below. For example, these services allow us to analyze how many users visit our website, what type of information is most in demand or how users find our website. We collect, inter alia, data about the website from which a data subject has accessed a website (so-called referrer), which subpages were visited, or how often and for how long a subpage was viewed. This helps us to improve our website content and make it more user-friendly. The data collected in this process is not used to personally identify individual users. The data collected is anonymous or, at most, pseudonymous. The legal basis for this is Article 6 (1) (f) GDPR.
Collection and processing of personal data
We only collect personal data based on your freely given consent, for example, to process an order, a survey, a competition or a registration for personalized services. There you will be informed about the intended processing purpose and, if necessary, asked for your consent to store the data.
The personal data collected from our websites will only be used without your consent to process an order or a query and, if necessary, passed on to the appropriate company within the group. In all other respects, your data will only be shared within the Hilite Group and stored in a centrally managed database of current and prospective customers run by Hilite Germany GmbH with your consent. The use of this data is limited to marketing and market and opinion research. You can withdraw your consent at any time with effect for the future.
Your data will be encrypted before it is transferred and processed to protect it from unauthorized access. Please note that unencrypted e-mails are not protected against unauthorized third-party access.
Your data will not be sold, rented or made available to third parties in any way other than as described herein. We will only transmit your personal data to state institutions and authorities to the extent required by applicable laws and regulations. We have obliged our employees, agencies and dealers to maintain strict confidentiality.
Contact
When you contact us by e-mail or using our contact form, we will store the information you provide us with (your e-mail address, surname, name and your message) to respond to your queries.
If we use our contact form to request information that is not required to establish contact, it will always be marked as optional. We use this data to ascertain the nature of your query and to address your concern more efficiently. This information is expressly provided on a voluntary basis and with your consent in accordance with Article 6 (1) (a) GDPR. Where this includes information on communication channels (e.g. e-mail address, telephone number), you also consent to us using this communication channel to contact you to respond to your query. You have the right to withdraw this consent at any time with effect for the future.
We will erase the data collected by us on this basis when it is no longer required or we will restrict the processing where we have to comply with statutory retention requirements.
Applications
You can apply for a job at our company by electronic means, including e-mail and online forms. Your data will be used solely to process your application and will not be disclosed to third parties. Please note that unencrypted e-mails are not protected against unauthorized third-party access.
If you have applied for a specific position, and it has already been filled, or if we consider you to be equally or even better suited for another position, we would like to pass on your application within the company. Please inform us if you do not consent to this.
Your personal data will be erased as soon as the application process is complete or after a maximum of six months if you have not expressly given your consent for your data to be stored for a longer period or if the process does not lead to a conclusion of an employment contract. The legal basis for this is Article 6 (1) (a), (b) and (f) GDPR and Article 26 of the German Federal Data Protection Act (BDSG).
Transfer of data to other group companies
In principle, we do not transfer your data to third parties outside the Hilite Group, unless we are required to do so by law, or the data transfer is necessary for the performance of a contract, or you have given prior express consent for the transfer of your data.
External service providers and partner companies only receive your data where this is necessary to process your query. In these cases, however, the amount of transmitted data is limited to the necessary minimum. Where our service providers come into contact with your personal data, we ensure that they comply with the provisions of data protection laws and regulations. Please also refer to the respective privacy policies of the providers. The relevant service provider is responsible for the content of third party services, whereby we monitor the services for their compliance with statutory requirements to the extent reasonable and practicable.
Transfer of data to external service providers (processors)
Your data will only be passed on to service partners if they work on our behalf and support Hilite Germany in providing its services.
The processing of your personal data by contracted service providers will be done on the basis of a data processing agreement in accordance with Article 28 GDPR.
The aforementioned service providers are only given access to such personal data to the extent necessary for the performance of their respective tasks. These service providers are prohibited from disclosing your personal data or using it for other purposes, in particular, for their own promotional purposes.
Where external service providers come into contact with your personal data, we have taken legal, technical and organizational measures and carried out regular checks to ensure that they comply with the applicable data protection laws and regulations.
We do not disclose your personal data to other companies for commercial purposes.
Website optimization
The legal basis for our use of website optimization tools to collect personal data is Article 6 (1) (f) GDPR in conjunction with Recital No. 47, under which the processing of data for direct marketing purposes may be regarded as carried out for a legitimate interest. Your interests or fundamental rights and freedoms do not override our legitimate interests in marketing in this case because our privacy policy contains extensive information about data collection, and you can opt-out at any time (via a link or browser settings). In addition, we only use pseudonymous tracking.
Cookies
Cookies are stored on your computer when you use our website. They are small text files that are stored on your hard drive and assigned to the browser you use, allowing certain information to flow to the party that sets the cookie. Cookies cannot run programs or transmit viruses to your computer. We use cookies to make our website more user-friendly and effective overall.
This website uses the following types of cookies, the scope and functionality of which is explained below:
Transient cookies
These cookies are automatically deleted when you close your browser. These include, in particular, session cookies. They save a so-called session ID which is used to attribute different requests from your browser to the joint session. This allows your computer to be recognized when you return to our website. Session cookies are deleted when you log out or close the browser.
First-party session cookies
These cookies are used to identify the user's current session on our website. They are only stored for the duration of the current session.
Persistent cookies
These cookies are automatically deleted after a specified period, which can differ from cookie to cookie. You can delete cookies at any time in the security settings of your browser.
Flash cookies
Flash cookies used are not collected by your browser, but through your Flash plug-in. In addition, we use HTML5 storage objects that are stored on your terminal. These objects store the necessary data regardless of the browser you use and have no automatic expiration date. If you do not want Flash cookies to be processed, you can install a suitable add-on, such as "Better Privacy" for Mozilla Firefox (https://addons.mozilla.org/de/firefox/addon/betterprivacy/) or the Adobe Flash Killer Cookie for Google Chrome. You can prevent the use of HTML5 storage objects by setting your browser to private mode. We also recommend that you manually delete your cookies and browser history on a regular basis.
Google Analytics
This website uses Google Analytics, a website analysis service provided by Google Inc. (1600 Amphitheatre Parkway, Mountain View, CA 94043 USA), including the Universal Analytics operating mode. This facilitates the assignment of data, sessions and interactions across several devices to a pseudonymous user ID and thus enables the analysis of a user's activities across devices.
Google Analytics uses cookies that allow your use of the website to be analyzed. The information generated by the cookie about your use of the website will typically be transmitted to and stored by Google on a server in the USA. If IP anonymization is activated on this website, your IP address will be first truncated within member states of the European Union or other states that are party to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there. Google will not associate the IP address transmitted by your browser by virtue of Google Analytics with any other data held by Google. Google will use this information on behalf of the operator of this website for the purpose of evaluating your use of the website, compiling reports on website activity for website operators and providing them with other services relating to website activity and internet use. These purposes also constitute our legitimate interest in data processing. The legal basis for the use of Google Analytics is Article 15 (3) TMG and/or Article 6 (1) GDPR. The data sent by us and associated with cookies, user identification (e.g. user IDs) or advertising IDs will be automatically erased after 14 months. When data reaches the end of the retention period, it is erased automatically once a month. For more information about the terms of use and data protection, please visit https://www.google.com/analytics/terms/de.html and/or https://policies.google.com/?hl=de
You can prevent the storage of cookies by changing the relevant settings of your browser. However, please note that if you do so, you may not be able to use all the features of this website to their full extent. You can also prevent the data generated by the cookie and related to your use of the website (including your IP address) from being collected and processed by Google by downloading and installing https://tools.google.com/dlpage/gaoptout?hl=de. The opt-out cookie prevents future collection of your data when visiting this website. To prevent Universal Analytics from collecting data across multiple devices, you have to opt-out on all the systems you use. Click here to install the opt-out cookie: <a href="javascript:gaOptout()"><strong>Opt out from Google Analytics</strong></a></p>
Blocking cookies
You can configure your browser settings according to your preferences and, for example, block the acceptance of third-party cookies or all cookies. Please note that if you do so, you may not be able to use all the functions and features of this website.
Data security
Hilite Germany uses technical and organizational security measures to protect the data against accidental or intentional manipulation, loss, destruction or access by unauthorized persons. Our security measures are revised on a continual basis and brought into line with the latest technology standards.
Social share buttons
This website uses social plug-ins from the following providers
- Facebook (operator: Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA)
- Xing (operator: XING SE, Dammtorstraße 30, 20354 Hamburg, Germany)
- LinkedIn (operator: LinkedIn Corporation, 1000 W. Maude Avenue, Sunnyvale, CA 94085, USA)
- indeed (operator: Indeed Inc, 177 Broad St., Stamford, CT 06901, USA)
- WeChat (operator: Tencent Holdings Ltd., Kejizhongyi Avenue, Hi-tech Park, Nanshan District, Shenzhen 518057, China)
These plug-ins normally collect data from you by default and transmit the data to the servers of the respective providers. To protect your privacy, we have taken technical measures to ensure that your information cannot be collected by the providers of the respective plug-in without your consent. These will be initially deactivated when you visit a page with embedded plug-ins. The plug-ins will not be activated until you click on the respective symbol, and by doing so, you give your consent to have your data transmitted to the respective provider. The legal basis for the use of the plug-ins is Article 6 (1) (a) and (f) GDPR.
Once activated, the plug-ins also collect personal data, such as your IP address, and send it to the respective provider’s servers, where the data is stored. Activated social plug-ins also set a cookie with a unique identifier when you visit the relevant website. This also allows the providers to create profiles about your user behavior. This occurs even if you are not a member of the provider's social media platform. If you are a member of the provider’s social media platform and you are logged into the social media platform during your visit to this website, your data and information about your visit to this website can be linked with your profile on social media. We have no influence over the extent of the data collected by the providers. For more information about the scope, nature and purpose of data processing, your rights and the options available to protect your privacy, please refer to the privacy policy of the respective social media provider. These are available at the following addresses:
Facebook: https://www.facebook.com/policy.php
Xing: https://privacy.xing.com/en/privacy-policy
Linkedin: https://www.linkedin.com/legal/privacy-policy
Indeed: https://de.indeed.com/legal#privacy
WeChat: https://www.wechat.com/en/privacy_policy.html
Rights of data subjects
If your personal data is processed, you are a data subject within the meaning of the GDPR and you have the following rights in relation to the controller:
Right of access under Article 15 GDPR
You have the right to obtain from us confirmation as to whether or not personal data relating to you is being processed, and, where that is the case, access to further information as specified in Article 15 GDPR.
Right to rectification
If your data which we have collected from you is incorrect or incomplete, you have the right to obtain from us without undue delay the rectification of your data in accordance with Article 16 GDPR.
Right to restriction of processing
Under the conditions laid down in Article 18 GDPR, you have the right to obtain from us restriction of processing.
Where processing has been restricted, we may only process your data with your consent or for the establishment, exercise or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a member state. We will inform you before the restriction is lifted.
Right to erasure
You have the right to obtain from us the erasure of personal data relating to you without undue delay where one of the grounds set out in Article 17 (1) GDPR applies, unless there is an exception to the erasure obligation in accordance with Article 17 (3) GDPR.
Notification obligation
If you exercise your right to rectification, erasure or restriction of processing, we will be required under Article 19 GDPR to communicate this to each recipient to whom we disclosed your personal data, unless this proves impossible or involves a disproportionate effort. We are also obliged to inform you about those recipients. You are entitled to receive information about those recipients from the controller.
Right to data portability
Under Article 20 GDPR, you have the right to receive from us in a machine-readable format the personal data relating to you and to transmit this data to another controller without hindrance, provided that the requirements of Article 20 (1) (a) GDPR are met, or to have your personal data transmitted directly from us to another controller, where technically feasible and where this does not adversely affect the rights and freedoms of others. That right shall not apply to processing necessary for the performance of a task carried out in the public interest or in the exercise of official authority.
Right to object
You have the right to object at any time to the processing of your personal data by Hilite Germany GmbH based on Article 6 (1) (f) GDPR.
We shall then no longer process your personal data, unless we demonstrate legitimate grounds for the processing which override your interests, rights and freedoms or processing is necessary for the establishment, exercise or defiance of legal claims.
Right to withdraw consent to data processing
You have the right to withdraw your consent to data processing from Hilite Germany GmbH at any time. The withdrawal of consent will not affect the lawfulness of the processing based on consent before the withdrawal.
Right to lodge a complaint with the supervisory authority
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular, in the member state of your habitual residence, place of work or place of the alleged infringement if you consider that the processing of personal data relating to you infringes this regulation.
Changes to the privacy policy
This privacy policy will be continuously updated to reflect changes in our website and internet developments. Any changes will be announced on this page in good time. We recommend that you view this page regularly to keep up to date with our provisions concerning data use.
Data protection officer
Konstantin Einmahl c/o Hilite Germany GmbH
Am Schlossfeld 5, 97828 Marktheidenfeld, Germany
E-mail: datenschutz(at)hilite.com
Contact details of the responsible persons:
Hilite Germany GmbH
Am Schlossfeld 5, 97828 Marktheidenfeld, Germany
T +49 9391 911-0
F +49 9391 911-106
info[at]hilite.com
represented by the Managing Directors:
Thomas Becker, Michael Eckert