AVL SCHRICK » Privacy policy

Privacy Policy

AVL SCHRICK GmbH Privacy Policy

The protection of your privacy is important to AVL SCHRICK.
We know that you care about which information about you is used and stored. We strictly observe the legal provisions and regulations applicable to us when processing your personal data and we are committed to maintaining robust privacy protections for all our users, business partners, staff members and other individuals who contact us.
This AVL SCHRICK Privacy Notice is designed to help you understand how we collect, use and safeguard your personal data. It explains how we handle your personal information.
Personal data you share with us through these sites or by any other interaction or which is transmitted by third parties will be processed by AVL SCHRICK and AVL group according to the principles set out below:

Contents

1 General Information about Data we Collect
1.1 Areas of the AVL SCHRICK Website
1.1.1 Information about the collection of Personal Data when you visit our website
1.1.2 Information about the collection of Personal Data when you contact us
1.2 SSL-/TLS Encryption
1.3 SERVER-LOG-Files
2 Privacy and trust go hand-in-hand. Both are valuable to us. – Obligatory information, Art. 13 & 14, GDPR
2.1 Responsible Body (Controller as per Art. 4, DSGVO)
2.2 Data Security Officer/Questions
2.3 What Sources and Data Du We Use?
2.4 What Do We Process Your Data for (Purpose of Processing) and On What Legal Basis?
2.4.1 For fulfillment of contractual obligations (Art. 6 Para. 1 lit. b GDPR)
2.4.2 In the context of the Application Process
2.4.3 In the context of balancing interests (Art. 6 para 1 lit. b GDPR)
2.4.4 As a result of your consent (Art. 6 para 1 lit. a GDPR)
2.4.5 Due to satutory provisions (Art. 6 para. 1c of the GDPR) or in the public interest (Art. 6 para. 1 lit e. GDPR)
2.4.6 Necessary in order to protect the vital interests of the data subject or of another natural person (Art. 6 para. 1lit. d GDPR)
2.5 Who Receives My Data?
2.6 Are Your Personal Data being Transferred to Others?
2.6.1 Sharing your Personal Data with other AVL Affiliates and/or AVL companies
2.6.2 Use of other Service Providers
2.7 Your Rights as a Data Subject
2.7.1 Right of Access by the Data Subject, Art. 15 GDPR
2.7.2 Right of Rectification, Art. 16 GDPR
2.7.3 Right to Erasure, Art. 17 GDPR
2.7.4 Right of Restriction of Processing, Art. 18 GDPR
2.7.5 Right of Data Portability, Art. 20 GDPR
2.7.6 Right to Object, Art. 21 GDPR
2.7.7 Right to lodge a complaint with a supervisory authority, Art. 77 GDPR
2.8 To What Extend Individual Decisions are applied?
2.9 Storage of Your Personal Data
2.9.1 Storage of Your Personal Data
2.9.2 Deletion of Your Personal Data
2.10 Safety Measures we take when Storing Your Data
2.11 Secure Transmission
3 Cookies and Similar Technologies
3.1 What are Cookies?
3.2 What are Cookies being used for?
3.3 What kind of Cookies?
3.4 How can I avoid the placing of Cookies on my device?
3.5 Deleting Cookies Manually by You
4 Google Analytics ff.
4.1 Browser Plugin
4.2 Objection against Data Collection
5 Liability
5.1 Liability for Own Contents
5.2 Liability for Links (Contents of linked Pages of Other Owners)
6 Change of our Privacy Policy

1. General Information about Data we Collect

We collect “Non-Personal Data” but also “Personal Data”.
Personal Data include, for example, your email-, contact- and company address information etc. that you provide to us (e. g. through a registration process on www.avl-schrick.com or through other channels or which is transmitted by third parties).
Non-Personal Data include all information that cannot be used to identify you as a person, such as usage data, generic demographic information, landing page hit rates referring to our website pages or URLs. When Non-Personal Data is being linked to Personal Data it becomes Personal Data.

1.1 Areas of the AVL SCHRICK Website

1.1.1 Information about the collection of Personal Data when you visit our website

Anyone may visit the public areas of the AVL SCHRICK website www.avl-schrick.com without disclosing his or her name, address, etc. Such information is only requested by AVL SCHRICK if needed to provide services to you or to fulfil requests you may have (such as registering).
When you use our website for informational purposes only and for as long as you do not provide us with any information about you, then we only collect data that is technically necessary for us to show you our website and to ensure its stability and security (legal basis is Art. 6 Para. 1 lit. f GDPR) and which facilitates access to our website (see also Item 3 “Cookies and Similar Technologies”). Such data are:

• IP address of the accessing computer
• Date and time of retrieval
• URL of the retrieved page
• Status message as to whether the retrieval was successful
• Transmitted amount of data
• The referrer URL from which the user came to the retrieved page
• HTTP user agent information (i.e. information about the accessing device, its operating system, and its browser)
• information stored in Cookies we have set
• log files we have created to be able to describe an event that has occurred during your visit (e. g. acceptance of Terms of Use).

1.1.2 Information about the collection of Personal Data when you contact us

When you contact us by the contact form on our website or by any other means we will process your personal data provided by you (such as your email-address, name and explicitly requested Information or any other personal information) in order to answer your questions, to process transactions requested by you or to transmit information on AVL Products and Solutions (legal basis is Art. 6 Para. 1 lit. b GDPR).

1.2 SSL-/TLS Encryption

For reasons of security and for protection of transfer of confidential data, such as orders or inquiries that you send to us as site owner, our website uses SSL-Encryption (Secure Sockets Layer) or TLS-Encryption (Transport Layer Security) respectively.
You can recognize encryption when the address bar changes from “http://” to “https://” and by the key symbol shown in the address bar. When such encryption is active the transferred data cannot be read by third parties.

1.3 SERVER-LOG-Files

The service provider collects and saves information automatically in so-called Server-Log-Files which are transmitted automatically by your browser. These files are:

• Browser type and Browser version
• Operating system used
• Referrer URL
• Host name of accessing device
• Time of access
• IP-address

The Data is not combined with data of other data sources.
Legal basis is Art. 6 Para. 1 lit. f GDPR which allows the processing of data in preparation or execution of a contract or other pre-contractual measures.

2 Privacy and trust go hand-in-hand. Both are valuable to us. 
-Obligatory Information, Art. 13 & 14, GDPR-

2.1 Responsible Body (Controller as per Art. 4, DSGVO)

The controller within the meaning of the General Data Protection Regulation and other national data protection laws of the EU Member States as well as other data protection regulations is:

AVL SCHRICK GmbH
Dreherstraße 3-5
42899 Remscheid
Germany

Registered Office: D – Remscheid
Local Court Wuppertal, HRB 11194
VAT-No. DE 811 297 525

Managing Director:
Dr. Josef Ernst, Roger Wildemann

Email: info@avl.com
Tel.: +49 2191 950-0
Fax: +49 2191 950 19-140

2.2 Data Security Officer / Questions

AVL SCHRICK GmbH appointed Dr. Jörn Voßbein as external Data Security Officer. The contact data to our external Data Security Officer is as follows:
Dr. Jörn Voßbein
Externer Datenschutzbeauftragter
Otto-Hausmann-Ring 113
42115 Wuppertal
Germany

https://Datenschutz.UIMC.de
Tel: +49 202 946 7726 200

In case you have questions regarding processing of your personal data or in case of request for information, applications or complaints, please contact us under the following address:

AVL SCHRICK GmbH
-Datenschutz-
Dreherstraße 3-5
42899 Remscheid
Germany

Tel.: +49 2191 950-0
Fax: +49 2191 950 19-140
Email: privacy@avl.com

2.3 What Sources and Data Do We Use?

A. We process personal data that we obtain from our business clients, suppliers, other business partners as well as individuals in the context of business relationships with them or their employers.
B. We also process – insofar as necessary to provide our services and organize our procurement of services – personal data that we obtain from publicly accessible sources, (e.g. debt registers, commercial and association registers, press, internet) or that is legitimately transferred between AVL group entities , from authorities or from other third parties (e.g. event organizations, network partners, credit rating agencies etc.).
C. Apart from data you provided to us directly, the categories of data we receive about you from third parties include, but are not limited to:

a. information in connection with your professional role and activities (e.g. in order to conclude and carry out contracts with you or your employer);
b. information about you in correspondence and discussions with third parties (e.g. if someone recommends you specifically);
c. information about you given to us by individuals associated with you (family, consultants, legal representatives, etc.) in order to conclude or process contracts with you or with your involvement (e.g. references, delivery-address, powers of attorney, emergency contacts);
d. information regarding legal regulations (e.g. export restrictions);
e. information from our distributors and other business partners for the purpose of ordering or delivering services to you or by you;
f. information about you found publicly in the media or internet (insofar as indicated in the specific case, e.g. in connection with job applications, media reviews, marketing/sales, etc.);
g. your interests and other socio-demographic data (for marketing purposes);
h. data in connection with your use of our websites, apps, and other applications (e.g., IP address, MAC address of your smartphone or computers, information regarding your device and settings, cookies, date and time of your visit, sites and content retrieved, applications used, referring website, localization data; see our Online Privacy Notice);
i. information from public registers;
j. data received in connection with administrative or court proceedings.

2.4 What Do We Process Your Data for (Purpose of Processing) and On What Legal Basis?

We process personal data in accordance with the provisions of the European General Data Protection Regulation (GDPR) and the local law applicable to our respective AVL group entities:

2.4.1 For fulfillment of contractual obligations (Art. 6 Para. 1 lit. b GDPR)

Primarily, data is processed in order to provide and receive services in the context of carrying out our core business activities, i.e. to contract with our clients and suppliers or to carry out pre-contractual measures that occur as part of a request. The purposes of data processing are primarily in compliance with the specific services provided or received.

2.4.2 In the context of the Application Process

When you applied for a job with us, we process your personal data when conducting the application process and studying your potential professional employment. Here we process personal data provided by you for the purpose of a sound personnel decision based on Art. 6 Para. 1) EU-GDPR. Furthermore, valuations based on objective, non-discriminating criteria and, where allowed publicly available personal data of your person may be stored in addition.
Personal data provided by you are required for the conduction of the application process. Without this data your application cannot be considered.

2.4.3 In the context of balancing interests (Art. 6 para 1 lit. b GDPR)

Where required and in line with applicable law, we process your data beyond the actual fulfillment of the contract for the purposes of the legitimate interests pursued by us or a third party, such as:

• Consulting and exchanging data with third parties (e.g. debt register to investigate creditworthiness and credit risks);
• Reviewing and optimizing procedures for needs assessment for the purpose of direct customer approach as well as obtaining personal data from publicly accessible sources for customer acquisition;
• Processing your personal data in connection with your capacity as an employee of one of our clients, business partners or suppliers (in the context of our global purchasing operations, when engaging with our customer services (e.g. support ticketing system, phone requests));
• Marketing interaction, market and opinion research (e.g. interactions during events/trade fairs, filling of questionnaires and other forms);
• Collaboration with business partners and suppliers in the context of joint projects (organization, process and project management);
• Asserting legal claims and defense in legal disputes and official proceedings;
• Guarantee of our company’s IT security and IT operation (including access rights management);
• Prevention and clarification of crimes;
• Video surveillance and other measures to protect the right of owners of premises to keep out trespassers or for collecting evidence in case of security incidents;
• Measures for building and site security as well as protection of our employees and other individuals and assets (including digital assets) owned by or entrusted to us (e.g. access controls, visitor logs, network and mail scanners, telephone recordings);
• Measures for business management (e.g. client and vendor relationship management), business development, development of services and products;
• Acquisition and sale of business divisions, companies or parts of companies and other corporate transactions and the transfer of personal data related thereto.

2.4.4 As a result of your consent (Art. 6 para. 1 lit. a GDPR)

As long as you have granted us consent to process your personal data for certain purposes (e.g. analysis of certain activities for marketing purposes, when registering to receive newsletters, when taking photos or videos at events, etc.), the processing will be within the scope of and based on such consent, unless we have another legal basis, provided that we require one. Consent given can be withdrawn at any time, but this does not affect the legality of data processed prior to withdrawal.

2.4.5 Due to statutory provisions (Art. 6 para. 1c of the GDPR) or in the public interest (Art. 6 para. 1 lit. e GDPR)

Furthermore, as a global company in the field of development, simulation and testing technology of powertrains for passenger cars, trucks and large engines, we are subject to various legal obligations, meaning statutory and regulatory or self-regulatory requirements. Purposes of processing may therefore include assessment and fulfilling control and reporting obligations under fiscal laws, and measuring and managing various legal and regulatory risks within AVL.

2.4.6 Necessary in order to protect the vital interests of the data subject or of another natural person (Art. 6 para. 1lit. d GDPR)

In rare cases, the processing of personal data may be necessary to protect the vital interests of the data subject or of another natural person. This would be the case, for example, if a visitor were injured in our company and his name, age, health insurance data or other vital information would have to be passed on to a doctor, hospital or other third party.

2.5 Who Receives My Data?

In the context of our business activities and in line with the purposes of the data processing set out above, we may transfer data to third parties, insofar as such a transfer is permitted and we deem it appropriate, in order for them to process data for us or, as the case may be, their own purposes. In particular, the following categories of recipients may be concerned:

• affiliates of the AVL group of companies;
• our service providers (within the AVL group of companies or externally, such as e.g. banks, insurances, consultants), including processors (such as e.g. IT providers, logistics providers, telecommunications providers, marketing agencies);
• dealers, suppliers, subcontractors and other business partners;
• clients;
• domestic and foreign authorities or courts;
• the public, including users of our websites, apps, applications, and social media (e.g. pictures and videos with your consent);
• acquirers or parties interested in the acquisition of business divisions, companies or other parts of the AVL group of companies;
other parties in possible or pending legal proceedings;

2.6 Are Your Personal Data being transferred to Others?

2.6.1 Sharing your Personal Data with other AVL Affiliates and/or AVL companies

Any Personal Data that you provide online through AVL websites may be passed on to other AVL Affiliates and/or AVL companies. We will do so only if deemed appropriate. All AVL Affiliates and/or AVL companies are bound by a groupwide Data Protection Policy.
Sometimes, and least partially, your Personal Data will be processed outside the EU or the EEA, namely in the following countries: Brazil, China, India, Japan, South Korea, Russia, Thailand, Turkey, and the United States. Other destinations may be added over time. Please refer to the current list of AVL Affiliates at https://www.avl.com/avl-worldwide. Transfers to AVL Affiliates and/or AVL companies will be made on the basis of declarations of adequacy or other accepted safeguards according to the Articles 44 et seq. of the GDPR, in particular standard data protection clauses adopted by the European Commission.
Please contact us if you would like to request to see a copy of the specific safeguards applied to the export of your information (Art. 13 Para 1 lit. f GDPR).

2.6.2 Use of other Service Providers

We use service processors for a range of services. If we do so we ensure to comply with the requirements under Art. 28 GDPR (provision describing the safeguards to apply when service processors are being used).

2.7 Your Rights as a Data Subject

We hereby inform you that pursuant to Art. 15 ff. DGPR, under the conditions defined therein, you have the right to information about the personal data concerned, the right to rectification or deletion or to restriction of processing, a right of objection to processing as well as the right to data portability. Likewise, under Art. 77 of the GDPR, you have the right to lodge a complaint with a data protection supervisory authority if you believe that the processing of your personal data violates the regulations stated in the GDPR. If the processing is based on Art. 6 para. 1 lit. a GDPR or Art. 9 Para. 2 lit. a GDPR (consent), you also have the right to withdraw the consent at any time without affecting the legality of the processing on the basis of the consent up to the time of revocation.

2.7.1 Right of Access by the Data Subject, Art. 15 GDPR

You have the right to information about whether or not and to what extent your personal data are being processed (especially the purpose of the processing, receiver of the data, storage duration, etc.).

2.7.2 Right to Rectification, Art. 16 GDPR

You have the right to demand the rectification of the data stored about you in case these are wrong or incomplete. This includes the right of completion of incomplete personal data by providing supplementary statements or notifications.

2.7.3 Right to Erasure, Art. 17 GDPR

You have the right to demand the erasure of your personal data. This is possible when the data is not needed anymore for the purpose it was originally collected for or when the data has to be erased on the basis of legal requirements. However, in individual cases this right may be excluded.

2.7.4 Right of Restriction of Processing, Art. 18 GDPR

You have the right to restrict the processing of your personal data. This is possible when the data has been recorded incorrectly or the processing of the data is unlawful. When restricting the processing of data, the processing is only allowed in closely defined cases.

2.7.5 Right of Data Portability, Art. 20 GDPR

You have the right to demand the return of the data concerning you in a current, electronical, machine-readable data format to you or to a named controller. This only applies if you have provided that information yourself.

2.7.6 Right to Object, Art. 21 GDPR

You have the right, for reasons arising from your particular situation, to object to the processing of your personal data at any time with effect for the future, provided that the processing of the data is for the protection of legitimate interest (see Art. 6 para. 1 lit. e, f GDPR). In the event of your objection, we will re-evaluate the legal requirements for the processing of your data and, if we find that the processing is not based on current law, we will refrain from any further processing of your data.

2.7.7 Right to lodge a complaint with a supervisory authority, Art. 77 GDPR

You have the right to lodge a complaint with a supervisory authority of the union or member states any time, in case of potential/ possible violations to current data protection regulations.

2.8 To what Extent Individual Decisions are applied?

In principle we do not use automated decision-making according to Art. 22 GDPR. If automated decision-making does take place in exceptional cases – insofar as this is required by law, you shall be informed seperately in individual cases.

2.9 Storage of Your Personal Data

2.9.1 Storage of Your Personal Data

To offer you the best customer experience, we store the Personal Data that is provided by you during your interactions with AVL SCHRICK. We delete data after the storage is no longer required.
We may need to keep data on file beyond that period if statutory storage rules require us to do so. In such scenarios, we will restrict the processing to what is needed to fulfil the statutory storage rules. For data storage in the context of our use of Google Analytics please see below “4. Google Analytics ff”.

2.9.2 Deletion of Your Personal Data

AVL SCHRICK will provide you with information about what Personal Data of yours we store. You can get information about your stored data at any time free of charge, and you may at any time assert your right to correct incorrect information, or to delete your data. If you wish to do so, please contact us at privacy@avl.com.

2.10 Safety Measures we take when Storing Your Data

AVL SCHRICK shall make reasonable efforts, to protect personal data against accidental and illegal destruction and loss, considering the state of technology, of cost of implementation, the kind, the amount, its context and aims of processing as well as the risk, the probability and seriousness of a possible breach of the rights and freedoms of a natural person. AVL SCHRICK shall endeavor to ensure that personal data is used correctly and is protected against unauthorized access, use or disclosure.
Access to personal data is restricted to members of the company, customers and representatives of AVL SCHRICK, who require these data in order to fulfill the function they were given and to develop and improve our products and services.

2.11 Secure Transmission

When special categories of Personal Data are transferred over the Internet, we encrypt it using Transfer Layer Security (TLS) encryption technology or similar technology.

3. Cookies and Similar Technologies

We use cookies on our website.

Cookie Preferences

3.1 What are Cookies?

Cookies are small files that are stored on a user’s computer. They are designed to hold a modest amount of data specific to a client and website, and they can be accessed either by the web server or the client computer. This allows the server to deliver a page tailored to a particular user, or the page itself can contain a script that is aware of the data in the cookie and so it is able to carry information from one visit to the website (or related site) to the next.

3.2 What are Cookies being used for?

Cookies help to improve your experience with our website by helping you resume where you left off, remembering your login, your preferences, and/or providing you with various tailored functions, such as showing you content targeted to your interests. We use information derived from cookies to improve the navigation structure of the AVL SCHRICK websites and optimize their user-friendliness (legal basis is Art. 6 Para. 1 lit. f GDPR).

3.3 What kind of Cookies?

On our website, we use cookies. Some of these cookies are essential, while others help us to improve your experience by providing insights into how the site is being used. Necessary cookies enable core functionality. The website cannot function properly without these cookies and can only be disabled by changing your browser preferences. Analytical cookies help us to improve our website by collecting and reporting information on its usage.

3.4 How can I avoid the placing of Cookies on my device?

When opening the website, you will see a banner that is being shown on the website. You find information that essential cookies are set and you can choose whether or not you allow cookies for marketing purposes and for external media.
If you generally deactivate the setting of cookies in the internet browser used, not all functions of our website may be entirely usable.

3.5 Deleting Cookies Manually by You

You can at any time delete cookies that already have been stored on your device. Files containing cookies are usually stored in your browser directory.

4. Google Analytics ff.

To constantly improve and optimize our AVL SCHRICK product and service offerings, we are using web tracking technologies. For this we are using Google Analytics, a Web analytics tool offered by Google Inc. (“Google”).
Google Analytics requires the placing of “cookies” on the device from which you access the web pages. These cookies enable us to analyse the use of our web pages by you. In addition, for identifying trends and improving our online offer, usage data such as the page last visited, the browser used, date, time, etc. are being evaluated. The information generated by the cookie about the use of the web pages are usually transmitted to a Google server in the USA and stored there. Google has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.

AVL SCHRICK uses Google’s services by enabling the IP anonymization feature. This leads to Google storing the user’s IP address only in a shortened format, resulting in anonymization/masking. The anonymization or masking of the IP takes place after the IP addresses arrive in the Google Analytics data collection network, but before any storage or processing of the data takes place. For more information, see: IP Anonymization in Google Analytics.

On behalf of AVL SCHRICK, Google will use the information obtained from cookies to evaluate the use of the web pages by you, to compile reports on web page activity and to provide other services related to web page activity and internet usage to AVL SCHRICK. This is our legitimate interest in data processing. The legal basis for the use of Google Analytics is Article 6(1)(f) GDPR.

In addition, data submitted to Google via the Google Analytics service is linked by Google with third-party cookies associated with visits to other websites, such as when an advertiser uses their Google Analytics data to create more relevant ads, or would like to more accurately analyse their traffic. More about this can be found under the explanatory page about Google Analytics provided by Google.

4.1 Browser Plugin

You can prevent the storage of cookies by a corresponding setting of your browser software; however, we point out that in this case you may not be able to use all the functions of this website in full. In addition, you may prevent the collection by Google of the data generated by the cookie and related to your use of the website (including your IP address) as well as the processing of this data by Google by downloading and installing the browser plug-in available under the following link https://tools.google.com/dlpage/gaoptout?hl=en

4.2 Objection against Data Collection

You can prevent the collection of your data by Google Analytics by clicking on the following link. An opt-out cookie will be set to prevent your data from being collected on future visits to this site: disable Google Analytics. For more information on how to handle user data on Google Analytics, see the Google Privacy Policy under following link: https://support.google.com/analytics/answer/6004245?hl=en.

Additional information about the third-party provider:

5. Liability

5.1 Liability for Own Contents

The content of this site was made up with highest care. However, we cannot assume any liability for the accuracy, completeness and timeliness of the content. As a service provider, we are responsible for our own content on these pages according to the general laws.

5.2 Liability for Links (Contents of linked Pages of Other Owners)

From our own content, cross-references to content provided by other providers (“Links”) must be distinguished. We have no influence on the website content of other providers; the content of the linked pages is always the responsibility of the respective provider or operator of the pages.

6. Change of our Privacy Policy

We reserve the right to change this privacy policy from time to time to always comply with the latest legal requirements or to implement changes to our services in the privacy policy, e. g. when introducing new services. For your renewed visit to our website then our new privacy Policy will apply.