Privacy Statement

Preamble

For the operators of this website, protecting and securing your personal data is a priority. Your personal data will be handled confidentially and according to the applicable privacy laws and this privacy statement.

Generally, no personal data are needed to use our website. If personal data such as name, mailing or e-mail address are collected on our web pages, the provision of such data is always optional whenever possible. We will not disclose these data without your explicit permission.

Data protection
This website uses the encryption protocol SSL (“Secure Sockets Layer”) respectively its further development TLS (“Transport Layer Security”).
SSL ensures that data transmitted between browser and web server can neither be read nor manipulated. Encryption algorithms are used to encode data during transmission.
An encrypted connection can be recognized by the fact that the address bar of the browser changes from “http: //” to “https: //”.

Please note that transmitting data via the Internet, for example in e-mails, may not be secure due to vulnerabilities. It is not possible to completely prevent third parties from accessing these data.

Contact details of the responsible controller

The responsible controller as defined in the EU General Data Protection Regulation (GDPR) and other national data protection laws of the EU member states as well as other data protection-related provisions is:

Moog GAT GmbH
Industriestraße 11
65366 Geisenheim, Germany
Phone: +49 6722 93788-0
Fax: +49 6722 93788-111
E-mail:
Website: www.gat-mbh.de

Contact details of the data protection officer

The data protection officer appointed by the responsible controller is:

datenschutz süd GmbH
Wörthstraße 15
97082 Würzburg
E-mail:
Phone: +49 (0) 931 30 49 76 – 0

General information on data processing

Scope of data processing
As a matter of principle, we gather and utilize users’ personal data only to the extent required to ensure the functioning of our website and of our contents and services. The gathering and utilization of our users’ personal data normally occurs after users have granted their consent. An exception occurs where data processing is legally permitted.

Legal basis for processing personal data
To the extent that permission of the affected individual is obtained for the processing of personal data, Article 6 (1) lit. a of the EU General Data Protection Regulation (GDPR) serves as the legal basis.

In the processing of personal data to fulfil a contract whose contractual party is the individual affected, Article 6 (1) lit. b GDPR serves as the legal basis. This also applies to processing required to implement pre-contractual measures.

If processing is required to safeguard the justified interest of our enterprise or a third party and the interests, basic rights and basic freedoms of the affected individual do not outweigh the first-mentioned interest, Article 6 (1) lit. f GDPR serves as the basis for such processing.

Data deletion and duration of data storage
The affected individual’s personal data are deleted or blocked as soon as the purpose of the storage ceases to apply. Storage can also occur if provided for by European or national legislators in EU regulations, acts or other legislation to which GAT is subject. A blocking or deletion of data then occurs only if a storage period prescribed by one of the aforementioned norms expires, unless a necessity exists in relation to the further storage of the data for the arrangement of a contract or the fulfilment of a contract.

Provision of the website and creation of log files

1. Description and scope of data processing
For every access query to our website, the web server of our hoster automatically collects data and information from the querying computer system. The following data is collected in this process:


  1. Information on the browser type and version
  2. The user’s operating system
  3. The user’s Internet service provider
  4. The user’s IP address
  5. The date and time of the query
  6. Websites from which the user’s system was directed to our website
  7. Websites which the user’s system accesses via our website

This data is compiled in log files and saved on the web server of our hoster. Not affected by this are the IP addresses of the user or other data that allow the assignment of the data to a user. No further personal data is stored together with the log file data.

2. Legal basis for data processing
The legal basis for the temporary saving of data and log files is Article 6 (1) lit. f GDPR.

3. Purpose of data processing
The temporary storage of the IP address on our server is necessary for granting the user’s system access to our website. For this purpose, the user’s IP address must remain stored on our server for the duration of the session.
These purposes correspond to the legitimate interests of data processing as indicated in Article 6 (1) lit. f GDPR.

4. Duration of data storage
The data is erased at the conclusion of the respective session.

5. Revocation and deletion opportunity
The recording of data for the provision of the website and the storage of data in log files is essential to operate the website. As a consequence, users do not have an option to revoke such data recording.

Utilization of cookies

1. Description and scope of data processing
Our website uses cookies. Cookies are small text files saved on or by the web browser, installed on the user’s computer system. Cookies are often saved on the user’s operating system whenever a user accesses a website. The file contains a distinctive sequence of characters which enables the website to correctly identify the user’s browser when the site is visited again.

We use cookies on our website to enable analysis of users’ surfing behavior, without that being linked to a specific person. The user data collected in this way is pseudonymized using technical precautions. That means the data can no longer be used to identify the user calling the website. The data is not stored together with other personal data of users. The following data is transmitted:


  • Two bytes of the user’s IP address
  • The accessed webpage
  • The website from which the user is directed to the accessed page (referrer)
  • The sub-pages to which the user is directed from the accessed page
  • The length of time the user remains on the page
  • The frequency the page is accessed

When users call our website, an info banner notifies them that cookies are used for analysis purposes and refers them to this privacy statement. Users are also informed in this connection that they can prevent storage of cookies in their browser settings.

2. Legal basis for data processing
The legal basis for personal data processing while utilizing cookies is Article 6 (1) lit. f GDPR.

3. Purpose of data processing
The analytics cookies are used to improve the quality and content of our website. These analytics cookies help us learn how the website is used so that we can keep on optimizing our offering.

These purposes correspond to the legitimate interests of processing personal data in accordance with Article 6 (1) lit. f GDPR.

4./5. Duration of data storage, revocation and deletion possibility
Cookies are saved on the user’s computer which transfers them to our server. Consequently, as the user, you have complete control over how cookies are used by your system. By changing the settings in your web browser, you can deactivate or restrict the transmission of cookies to external websites. You can also delete all saved cookies on your system at any time. Restrictions on cookie usage can be managed automatically by your browser. If you choose to deactivate cookies for our website, it may prevent you from taking full advantage of all the features offered on this website.

In most browsers the user can choose to restrict or even disable cookies. You can manage a number of online ad cookies on the US website www.aboutads.info/choices or its European equivalent www.youronlinechoices.com/uk/your-ad-choices.

Newsletter

1. Description and scope of data processing
The users of our website have the possibility of subscribing to a free newsletter. When registering for the newsletter, the user is asked to provide information via an input mask This includes the following information:


  • Title
  • First Name
  • Last Name
  • Company
  • Country
  • Industry
  • E-mail
  • IP address of the querying computer
  • Date and time

As part of the registration process, the user is asked to consent to have his/her data processed and is informed of this data protection policy.

This website uses the newsletter tool CleverReach to create and manage newsletters. The required data of the newsletter recipients are hosted on web basis on a CleverReach server in a password-protected area only the website operator can access. CleverReach warrants that CleverReach neither accesses the data of newsletter recipients, nor uses them for any other purpose.
The newsletter tool analyzes the reach of the respective newsletter to ensure that the recipients actually receive the newsletter. The individual behavioral patterns observed during this process are only used to statistically evaluate the newsletter’s effect and are not disclosed to third parties or used for any other purpose.
By submitting the filled-in newsletter form you agree that CleverReach may process your data in the expected scope. For more information, see the CleverReach privacy statement (in German):
www:CleverReach AGB/ Datenschutz

2. Legal basis for data processing
The legal basis for processing the user’s personal data after registering and granting his/her consent is provided in accordance with Article 6 (1) lit. a GDPR.

3. Purpose of data processing
The user’s email address is processed for the purpose of delivering the newsletter. Other personal data collected during registration is processed in order to prevent the improper use of our services or the provided email address.

4. Duration of data storage
Your data is saved for as long as your newsletter subscription is active.

5. Revocation and deletion opportunity
The newsletter subscription can be cancelled by the user at any time. For this purpose, a cancellation link is embedded in every newsletter. The revocation can also be made by notification to the above contact options. When cancelling the subscription, the user can also withdraw his/her consent to having his/her personal data collected during the registration process.

Contact form and e-mail contact

1. Description and scope of data processing
Our Internet site contains a form that can be used for contacting us electronically. If a user makes uses of this option, the data entered in the input screen is sent to us and stored. The following data is collected:


  • Customer no.
  • Company
  • Website
  • Title
  • Last name
  • E-mail
  • Phone
  • Country
  • IP address of the querying computer
  • Date and time

Your consent to processing of the data is obtained and your attention is drawn to this data privacy statement.
Furthermore, communication is possible by using the e-mail address you specified. In this case, the personal data sent with your e-mail is stored.

2. Legal basis for data processing
The legal basis for processing data is Article 6 paragraph 1 point (a) GDPR if the user has given consent.
The legal basis for processing data sent with an e-mail is Article 6 paragraph 1 point (f) GDPR.
If the purpose of the e-mail contact is to conclude a contract, the additional legal basis for processing of the data is Article 6 paragraph 1 point (b) GDPR.

3. Purpose of data processing
We process personal data from the input screen solely for handling contacts. If we are contacted by e-mail, that constitutes the legitimate interest required for processing the data.
The other personal data that is processed helps prevent misuse of the contact form and ensure the security of our IT systems.

4. Duration of data storage
The data is erased as soon as it is no longer required for achieving the purpose for which it was collected. This is usually the case when the conversation is over. The conversation is over when it is clear from circumstances that the matter in question has been definitely resolved.

5. Revocation and deletion opportunity
Users can revoke their consent to their personal data being processed at any time. If you contact us by e-mail, you can object to your personal data being stored at any time. That then means the conversation cannot be continued.
All personal data stored as part of the contact is erased in this case.

Web analytics with Matomo (formerly PIWIK)

1. Description and scope of data processing

Our website uses the open-source software tool Matomo (formerly PIWIK) for analysing the browsing behaviour of our users. The software saves cookies onto the user’s computer (for more on cookies, see above). When the user accesses a page on our website, Matomo saves the following data:


  • Two bytes of the user’s IP address
  • The accessed webpage
  • The website from which the user is directed to the accessed page (referrer)
  • The sub-pages to which the user is directed from the accessed page
  • The length of time the user remains on the page
  • The frequency the page is accessed

The software runs exclusively on the servers of our website. Any storage of the user’s personal data only takes place there. No data is shared with third parties.

The software is configured in such a way that it does not store full IP addresses, but only two bytes of the user’s IP address (e.g. 192.168.xxx.xxx). This renders it impossible to attribute the abbreviated IP address to the querying computer.

2. Legal basis for data processing
The legal basis for processing the user’s personal data is provided in Article 6 (1) lit. f GDPR.

3. Purpose of data processing
Processing the user’s personal data allows us to analyse the browsing behaviour of our users. The analysis of the collected data permits us to generate information about how certain components of our website are used. This helps us to improve our website and enhance user friendliness on a continual basis. This corresponds to the legitimate interests of processing personal data in accordance with Article 6 (1) lit. f GDPR.

4. Duration of data storage
All personal data is deleted as soon as it is no longer required for purposes of documenting the user’s visit.

5. Revocation and deletion opportunity
Cookies are saved on the user’s computer which transfers them to our server. Consequently, as the user, you have complete control over how cookies are used by your system. By changing the settings in your web browser, you can deactivate or restrict the transmission of cookies to external websites. You can also delete all saved cookies on your system at any time. Restrictions on cookie usage can be managed automatically by your browser. If you choose to deactivate cookies for our website, it may prevent you from taking full advantage of all the features offered on this website.

If you do not wish to have your data saved and analysed, you can withdraw your consent on cookie storage and usage with a mouse click at any time. In such cases, Matomo places an “opt-out cookie” onto your browser which prevents it from collecting any data during your visit to our website. If you choose to delete the cookies in your browser, the opt-out cookie will also be erased, which means you will have to reactivate the opt-out cookie during your next visit.
For more information on the privacy settings of the Matomo software, see the following link: https://matomo.org/docs/privacy/.

If you have activated the “Do not track” option in your browser, you do not require an opt-out cookie.

Revocation of data collection through Matomo:

Integration of third-party services and contents

Google Maps
To visualize geographic information, Google Maps uses the Google Maps API. When using Google Maps, Google (Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA, 94043, USA) also collects, processes and uses data on how web page visitors interact with the features of Google Maps. For more information on how Google processes data, see the Google privacy statement (in German) at: www.google.com/privacypolicy.html

AdWords – Google Conversion Tracking
This website uses Google Conversion Tracking, operated by Google (Google Inc. ,1600 Amphitheatre Parkway, Mountain View, CA 94043, USA). If you open our website by clicking on a Google ad, Google AdWords generates a cookie (“conversion cookie”). Conversion cookies expire after 30 days and do not collect personally identifiable data. When you visit certain pages of our website while the cookie is still valid, the website operator and Google can see that someone has clicked on the ad and was transferred to our website. Every AdWords customer receives a different cookie. Therefore, cookies cannot be traced by using the web pages AdWords customers have visited. The collected information is used to create conversion statistics for AdWords customers. AdWords customers can see the total number of users who clicked on their ad and were then redirected to a web page that contains a conversion tracking tag. Information that personally identifies users is not provided. You can disable conversion-tracking cookies by configuring your browser to block cookies from the “googleadservices.com” domain. For more information (in German), see:
https://services.google.com/sitestats/en.html

Integration of social media

LinkedIn button
This website uses the LinkedIn button from the professional network LinkedIn (LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA). The LinkedIn button can be identified by the LinkedIn logo or the "Recommend" button. When a visitor opens a web page of this website that contains such a button, the browser directly connects to the LinkedIn servers. LinkedIn is then notified that our website was visited with your IP address. According to LinkedIn, personal data are only collected after clicking on the LinkedIn button. Such data (among them the IP address) are collected and processed only for members who are signed in. Purpose and scope of the data collection and the further data processing and usage by LinkedIn as well as your respective rights and setting options for protecting your privacy are explained (in German) at:
www.linkedin.com/static?key=privacy_policy&trk=hb_ft_priv

XING button
This website uses the XING button from the professional network XING (XING AG, Gänsemarkt 43, 20354 Hamburg). When a visitor opens a web page of this website that contains such a button, the browser directly connects to the XING servers. This is needed for the share features (for example display of the count value). Personal data from you on accessing this website are not saved. XING particularly does not save IP addresses or your usage behavior. For information on data collection and use of data by platform or button, see the XING privacy statement (in German) at:
www.xing.com/app/share?op=data_protection

YouTube buttons
This website uses the Youtube.de/Youtube.com button (Google Inc. – through Youtube, LLC, Cherry Ave., USA). When a visitor opens a web page of this website that contains such a button, the browser directly connects to the YouTube servers. Information about which web pages of this website you visited is transferred to the YouTube server. When you are logged in as a YouTube member, YouTube associates this information with your personal YouTube user account. When using these buttons (for example by clicking the "Subscribe" button or "Start" button of a video or when submitting a comment), this information is assigned to your respective user account. If you wish to prevent the information from being linked with your user account, sign out from the platform before clicking the button. For information on data collection and use of data by platform or button, see the Google privacy statement (in German) at:
www.google.de/intl/de/policies/privacy/#infocollect

Rights of the person affected

As an affected person, whose personal data are collected in the context of the above-mentioned services, you have the following rights in principle, insofar as in individual cases no statutory exceptions apply:


  • Right to withdraw of consent (Article 7 (3) GDPR)
  • Right of access by the data subject (Article 15 GDPR)
  • Right to rectification (Article 16 GDPR)
  • Right to erasure (Article 17 GDPR)
  • Right to restriction of processing (Article 18 GDPR)
  • Right to data portability (Article 20 GDPR)
  • Right to object (Article 21 GDPR)
  • Right to lodge a complaint with a supervisory authority (Article 77 GDPR)

If you have questions about personal data, please get in touch with us using the contact information above.