Data protection declaration

Status: 01.06.2021

1. Name and contact data of the data controller 

Lomberg GmbH

Buschhausener Straße 153

46049 Oberhausen

Tel.: +49 (0) 208 58004 0

E-Mail: info@lomberg.org

Responsible together with:

Chemische Fabrik Wocklum | Gebr. Hertin GmbH & Co. KG

Glärbach 2

58802 Balve

Tel.: +49 (0) 2375 9250

E-Mail: chemie@wocklum.de

2. Contact data of the data protection officer 

Riske IT GmbH 

Mr Pascal Riske 

Keldenicher Straße 23 

50389 Wesseling 

Web: www.riske-it.de 

Email: datenschutz@riske-it.de

3. Data processing when visiting our website 

Each time our website is called up, we temporarily collect and store data with each access to contents of this website through so-called log files, which may permit an identification. The following data are collected hereby: 

  • the date and time of the access to the website 
  • the used browser types and versions 
  • IP address of the computer that calls up the website 
  • Host name of the accessing computer 
  • the operating system used by the accessing system 
  • website from which the website was called 
  • websites which were called up via the website 
  • page that was visited on our website 
  • transferred data volume 
  • report whether the call was successful 
  • information about the browser type and the used version. 

These data are processed in order to safeguard our legitimate interests pursuant to Art. 6 Para. 1 Sentence 1 lit. f GDPR (General Data Protection Regulation). 

The temporary storage of the data, above all the IP address, is necessary for the operation of a website visit in order to enable the provision of the website. A further storage of the log data is carried out in order to ensure the functionality of the website and the security of the IT systems, in particular the web server. These purposes form our legitimate interests. 

We store the server log files for 7 days. However, we reserve the right to store the server log files longer for a subsequent check should there be concrete indications of an unlawful use. 

We also use services of foreign third-party providers, which collect server log files for their own purposes, on which we have or may have no influence. Please refer to the corresponding section in this privacy policy (Points 7 – 10) for more details.

The North Rhine-Westphalia State Commissioner for Data Protection and Freedom of Information provides information on how to pseudonymise your IP address. You can find out more in this respect under: 

https://www.ldi.nrw.de/mainmenu_Tipps/submenu_Tipps_A-Z/Inhalt/Anonymisierungsdienste/Anonymisierungsdienste.php

4. Cookies 

We use cookies on our site. They are small files, which are created automatically by your browser and which are stored on your terminal device (laptop, tablet, smartphone or similar device) when you visit our site.

Information is stored in the cookie, which respectively arises in connection with the specifically used terminal device. However, this does not mean that we directly receive knowledge of your identity hereby. Cookies do not cause any damages to your terminal device either.

By using technical cookies, we aim to make the use of our service more convenient for you. We therefore use so-called session cookies in order to recognise that you have visited individual pages of our website already. The majority of cookies are, as a rule, deleted automatically once you have left our site (“maximum age: end of session”).

Example: If you agree to the use of website tracking technologies of third parties when our website is called up for the first time, then your selection will be stored in a cookie. This cookie notes your selection, even if you now call up other sub-pages of our homepage.

The data processed by cookies are necessary for the stated purposes in order to safeguard our legitimate interests as well as those of third parties according to Art. 6 Para. 1 Sentence 1 lit. f GDPR.

The majority of browsers accept cookies automatically. You can, however, configure your browser so that no cookies are stored on your computer or so that a message always appears before a new cookie is created. The full deactivation of cookies may, however, lead to the fact that you cannot use all functions of our website.

We also use services that may set cookies of third-party providers on your terminal device. For more details, in this respect please refer to the corresponding section in this privacy policy. You have the option of configuring your browser in such a way that JavaScript is not executed. In this case, it is possible that you will only be able to use our website to a limited extent or may not be able to use all functions. 

5. Contact 

If you contact us (e.g. via our contact form under https://wocklum-gruppe.de/kontakt/, by email or phone), we will process your details to the extent that this is necessary to reply to the contact request and for possibly requested measures.

If your message is carried out with the aim to initiate a contractual relationship with us or is necessary to fulfil or (reverse) process an existing contract between you and us, we shall carry out the processing of the corresponding data based on Art. 6 Para. 1 Sentence 1 lit. b GDPR.

If your message is of a general nature, we base the processing of your request on our legitimate interest pursuant to Art. 6 Para. 1 Sentence 1 lit. f GDPR. Our legitimate interest lies in finally processing the received message and to contact you externally. We will store your message until the processing has been completed. It will only be stored for a longer period of time if we are explicitly entitled hereto by law. 

Please note that, despite applying the greatest possible care, we cannot ensure that communication via the internet is secure. Therefore, we recommend that you always send encrypted messages. 

6. Application procedure  

Should you submit a job application to us, we shall process the application documents submitted by you. Which personal data we process when doing so will depend upon which data you send in to us. In addition to this, we shall process data collected in the course of the job interview.  

The legal basis for processing you application documents is Article 6 Paragraph 1 Sentence 1 b in conjunction with Article 88 GDPR, Section 26 of the German Federal Data Protection Regulations [BDSG]. 

It is possible that your personal details will be passed on to other businesses within the Wocklum Group in the course of the application procedure. It is necessary that your application documents may be processed across the Wocklum Group to maintain our justified interests and those of our companies in accordance with Article 6 Paragraph 1 Sentence 1 f GDPR.
These justified interests are the optimisation and centralisation of our HR systems, reciprocal support across the Group in our recruitment systems as well as for internal administration reasons.  

In the event that your application is rejected by us, we shall retain your data for six months from the date on which you receive our rejection. In the event that we offer you an employment contract and you sign it, we shall delete your application data as soon as the reason for keeping it no longer applies. Data associated with your application, (e.g. settlement of travelling expenses) and subject to commercial law or tax law safekeeping obligations shall be archived in accordance with the regulations governing statutory safekeeping periods. 

We shall obtain your consent in advance in accordance with Article 6 Paragraph 1 Sentence 1 a GDPR should we wish to save your data for a longer period of time than that above, e.g. in the event that while there is admittedly no suitable position vacant within our company at present, but such a position could become vacant at a subsequent point in time. Your consent for your application documents to be saved for a period of time longer than that specified above will be voluntary. Should you not grant your consent, we shall be unable to take your application into consideration in the event that we subsequently have a vacancy which would be suitable for you. Your application documents will be removed from the pool of applicants when we receive your rejection.  

We would recommend that you send in your application documents in a password protected PDF file / ZIP file or similar. Your application documents will be handled in total confidence. 

7. jQuery 

For our website, we use the free JavaScript library “jQuery” from the OpenJS Foundation, 1 Letterman Drive, Building D, Suite D4700, San Francisco, CA 94129. The use is made to safeguard our legitimate interests, Art. 6 Para. 1 Sentence 1 lit. f GDPR.

The purpose lies in a standard presentation of our website on the internet as well as the promotion of our range optimisation by using a JavaScript library, which significantly increases the loading speed of our website by less codes (search engine optimisation). By the outsourcing our website does not only gain in loading speed, which has a positive effect with the search engine optimisation, but a failure security is also safeguarded. Our interests lie in these purposes. We resort hereby to a so-called “content delivery network (CDN)” at: http://code.jquery.com/jquery-1.9.1.min.js. This means that this library is not stored on the servers of our contract data processing host but is loaded from servers when our website is called up, which are owned by third parties in the USA. As soon as you call up content on our website, a connection is automatically established to servers from which jQuery elements are loaded. Log files are regularly collected in this case, in particular the IP address. However, this does not mean that we or the external web host directly receive knowledge of your identity hereby.

As the server locations are distributed worldwide, it cannot be excluded that your personal data are accordingly stored and further processed worldwide, among others on servers in the USA. These could be countries in which the level of data protection is not as high as within the European Union. There is no adequacy decision of the EU Commission within the meaning of Art. 45 GDPR for the USA. Used EU standard contractual clauses form suitable guarantees here within the meaning of Art. 46 GDPR for the data transfer. You can find a copy of the standard contractual clauses approved by the EU Commission, which OpenJS Foundation refers to, under:

https://openjsf.org/wp-content/uploads/sites/84/2019/11/OpenJS-Foundation-Privacy-Policy-2019-11-15.pdf

8. fast-fonts (web fonts)

We have integrated fonts from Monotype on our website, which are loaded automatically by servers from Monotype (fast.fonts.net): The provider is Monotype Imaging Holdings Inc., 600 Unicorn Park Drive, Woburn, MA 01801 USA. As soon as you call up contents of our website, a connection is automatically established to servers, from which web fonts are loaded and cookies of fast-fonts may be stored on your terminal device. In addition, log files are regularly collected, in particular the IP address. However, this does not mean that we receive knowledge of your identity.

We base the processing when using Monotype web fonts on Art. 6 Para. 1 Sentence 1 lit. f GDPR in order to safeguard our legitimate interests.  

The aim here is a standard presentation of our website on the internet as well as to promote the optimisation of our range by using a font, which is suitable for indexing in search engines (search engine optimisation). Through the outsourcing, our website additionally gains in loading speed, which also has a positive impact with the search engine optimisation. Our interests lie in these purposes.

As web fonts of fonts.com is the property of the Monotype group and Monotype has distributed its servers all over the world it cannot be excluded that your personal data are stored and further processed worldwide, among others on servers in the USA. These could be countries in which the level of data protection is not as high as within the European Union. There is no adequacy decision of the EU Commission within the meaning of Art. 45 GDPR for the USA. Used EU standard contractual clauses form suitable guarantees here within the meaning of Art. 46 GDPR for the data transfer. You can find a copy of the standard contractual clauses approved by the EU Commission, which Monotype refers to, under:

https://www.monotype.com/legal/privacy-policy/website-use-privacy-policy.

9. Facebook fan page 

We have set up a Facebook fan page for our company. We are jointly responsible for the data processing together with Facebook: Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland. You can find details regarding the delimitation of the responsibility in the following agreement:

https://en-gb.facebook.com/legal/terms/page_controller_addendum

You can find further information here https://facebook.com/policy.php.

We would like to point out to you that you use this Facebook page and its functions at your own responsibility. This applies in particular to the use of the interactive functions (e.g. comments, sharing, assessment). Alternatively, you can also call the information offered through this page on our internet offering at https://wocklum-gruppe.de.

When visiting our Facebook page, Facebook collects among others your IP address as well as further information, which is available in the form of cookies on your PC. This information is used in order to make statistical information available to us as the operator of the Facebook page about the use of the Facebook page. Facebook makes more detailed information available in this respect under the following link: https://en-gb.facebook.com/help/pages/insights

The data collected in this context about you are processed by Facebook Ltd. and, if applicable, transferred to countries outside of the European Union. Which information Facebook receives and how this is used is described by Facebook in a general form in its data usage guidelines. You will also find information there regarding possibilities for contacting Facebook as well as the setting options for advertisements. The data usage guidelines are available under the following link: https://en-gb.facebook.com/about/privacy. You can find the full data policies of Facebook here: https://de-de.facebook.com/full_data_use_policy

In which way Facebook uses the data from the visit to Facebook pages for its own purposes, to what extent activities on the Facebook page are allocated to individual users, how long Facebook stores these data and whether data from a visit to the Facebook page are forwarded to third parties, is not conclusively and clearly stated by Facebook and is not known to us. When accessing a Facebook page, the IP address allocated to your terminal device is transmitted to Facebook. According to information from Facebook, this IP address is anonymised (in case of “German” IP addresses). Facebook additionally stores information about the terminal devices of its users (e.g. within the scope of the function “registration notification”); if applicable it is possible for Facebook to therefore allocate IP addresses to individual users. If you as a user are currently registered with Facebook, a cookie will be located on your terminal device with your Facebook ID. This way Facebook is in the position to track that you have visited this site and how you have used it. This also applies to all other Facebook pages. Via Facebook buttons into websites, it is possible for Facebook to record your visits to these website pages and to allocate these to your Facebook profile. Based on these data contents or advertising can be offered tailormade to suit your interests. If you would like to avoid this, you should log out of Facebook or deactivate the function “stay logged in”, delete the cookies existing on your device and end and re-start your browser. This way Facebook information, through which you can be directly identified, will be erased. This way you can use our Facebook page without your Facebook identifier being disclosed. If you access interactive functions of the page (like, comment, share, messages, etc.), a Facebook login screen will appear. After a possible login, you will again be recognisable to Facebook as a specific user. You can find information in this respect, how you can manage or erase information about you, on the following Facebook Support pages: https://en-gb.facebook.com/about/privacy

We as the provider of the information service possibly additionally collect and process data from your use of our service if you contact us via our Facebook page. Alternatively, you can contact us directly. You can find this privacy policy in the respectively valid version under the point “Data protection” on our Facebook page. In case of questions regarding our information offer, you can contact us at any time. You can also find further information relating to Facebook and other social networks and how you can protect your data, at www.youngdata.de.

As Facebook has distributed its servers all over the world, it cannot be excluded that your personal data are stored and further processed worldwide, among others on servers in the USA. These could be countries in which the level of data protection is not as high as within the European Union. There is no adequacy decision of the EU Commission within the meaning of Art. 45 GDPR for the USA. Used EU standard contractual clauses form suitable guarantees here within the meaning of Art. 46 GDPR for the data transfer. 

You can find a copy of the standard contractual clauses approved by the EU Commission, which Google refers to, under: https://www.facebook.com/help/566994660333381?ref=dp

10. Your rights 

According to Art. 15 GDPR, you have the right to receive information about the data stored in relation to your person including possible recipients and the planned storage duration. 

You have the right to revoke your consent, without this affecting the lawfulness of the processing carried out owing to the consent until the revocation. 

Should incorrect personal data be processed pursuant to Art. 16 GDPR, you have a right to rectification. 

If the statutory prerequisites exist, then you have the right to erasure or restriction of the processing of the data concerned (Art. 17 and Art. 18 GDPR). 

According to Art. 21 GDPR, you have the right, for reasons which arise from your particular situation, to file an objection at any time against the processing of your personal data, which is carried out owing to Art. 6 Para. 1 Sentence 1 lit. f GDPR. We will then no longer process the personal data unless we can essentially prove reasons that are worthy of protection for the processing, which outweigh your interests, rights and freedoms, or the processing serves the assertion, exercising or defence of legal claims. The collection of the data is absolutely essential for the provision of the website and the storage of the log files for the operation of the website. 

Pursuant to Art. 77 Para. 1 GDPR, you have the right to lodge a complaint at a data protection supervisory authority if you are of the opinion that the processing of your data breaches applicable data protection law.