Global presence Customer

Lexzau, Scharbau GmbH & Co. KG

Mai 2024

 

Website Privacy Policy

The Leschaco Group protects your privacy in compliance with the General Data Protection Regulation (GDPR) and other applicable regulations. In the following document, we would like to inform you about the different ways we process your personal data when you visit our website.

1. Controller 

The responsible body for the collection and processing of your data in the context of this website is:

 

Lexzau, Scharbau GmbH & Co. KG

Kap-Horn-Strasse 18

28237 Bremen

Deutschland

Phone: (49) 421.6101 0

E-Mail: privacy@remove-this.leschaco.com 

 

The Leschaco Group is composed of a variety of subsidiaries with operations around the world. We share some of your personal data with our affiliate companies. Any sharing of your personal data with other Leschaco entities will be made in accordance with applicable data protection laws.

 

2. How We Process Your Data

2.1.Usage data

When you visit our websites, our web server briefly assesses usage data for statistical purposes to enhance our website's quality. This data includes:

  • Name and address of requested content.
  • Date and time of query.
  • Amount of data transferred.
  • Access status (content transferred, content not found).
  • Description of the web browser and operating system used.
  • Referral link indicating the page from which you reached ours.
  • IP address of the requesting computer (anonymized for privacy).

This log data is evaluated anonymously. We also store the full IP address transmitted by your web browser strictly for the purpose of detecting, limiting, and eliminating attacks on our websites.

The processing of usage data is justified under Art. 6 (1) (f) GDPR, based on our legitimate interest in providing website content, ensuring optimal display across devices and browsers, and protecting website security.

 

2.2.Cookies und Similar Technologies

Cookies are small text files that can be stored on and extracted from your device. We use some cookies necessary for the proper functioning of our website, and others for analytical purposes, advertisement services, and to enhance your browsing experience and provide personalized content. 

The length of time a cookie will stay on your computer or mobile device depends on whether it is a "persistent" or "session" cookie. Session cookies will only stay on your device until you stop browsing. Persistent cookies stay on your computer or mobile device until they expire or are deleted.

We use cookies and similar technologies like pixels, tags, web beacons, and other identifiers to help us personalize our website for you, remember your preferences, understand how users are navigating our page, and help customize our marketing communication.

What types of cookies do we use?

  • Strictly necessary cookies: These cookies are essential for the operation of our website. Without these cookies, our site may not be displayed optimally, some functions are no longer available, and security may be compromised. These cookies also enable services you have specifically asked for. The use of essential cookies is based on our legitimate interest of displaying a functional website, as per Art. 6 (1) (f) GDPR.
  • Performance cookies: They monitor website performance and collect anonymous data about how visitors use the site, which helps us improve the way our page works. 
  • Functional cookies: They are used to remember user preferences so that our website can be tailored and personalized. 
  • Targeting or advertising cookies: These are used to target advertising to the interests of users based on previous web browsing activities. 

 

The use of non-essential cookies is legally based on your consent, as per Art. 6 (1) (a) GDPR, which you can freely give. For this purpose, we use a consent banner that stores your preferences.  You can easily review the cookies currently in use, revoke your consent, and adjust your consent settings at any time by clicking here: .

 

2.3.Analytics

When you visit our website, your surfing behavior can be statistically evaluated, which is done primarily with cookies and analysis tools. We use different web analysis tools to design our websites in accordance with the needs of our visitors. These tools create user profiles based on pseudonyms. For this purpose, cookies and similar technologies are deployed on your device and accessed by us. This allows us to recognize returning visitors and count them as such.

The legal basis for this data processing is your consent which you can grant via our consent banner as per Art. 6 (1) (a) GDPR. You can withdraw your consent at any time. To do so, please follow this link: and make the appropriate settings via our banner. If you want more information about our use of cookies and similar technologies, please refer to section 2.2.

Which third-party providers do we use in this context?

Google Analytics: We use Google Analytics with IP anonymization. We also use the demographic features function which generates reports containing statements about the possible age, gender, and interests of site visitors. This data comes from interest-related advertising by Google and from visitor data from third-party providers. Data generated by cookies regarding your website usage is typically transmitted to and stored by Google on servers in the United States. We have a Data Protection Agreement with Google, Inc. in accordance with Art. 28 GDPR and data transfers to the U.S. are ensured with an adequate level of protection due to the provider's certification under the EU-U.S. Data Privacy Framework.

If you wish to revoke your consent, please click here: and adjust the settings via our banner.  

 

2.4.Advertisement services

We use cross-device tracking technologies to display targeted advertising on other websites based on your visits to our websites and to assess the effectiveness of our advertising activities.

These technologies are provided by third parties who gather identifying features of your browser or device (e.g., a browser fingerprint), analyze your IP address, store or access identifiers on your device (e.g., cookies), or use individual tracking pixels. The unique characteristics collected by these third parties can be used to recognize your device on other websites. We can instruct these third-party providers to show advertisements based on the pages you have visited on our site.

We also perform cross-device tracking. If you log in to the third-party provider with your own user data, the respective identifying characteristic of different browsers and devices can be linked to each other. If, for example, the third-party provider has created a unique identifier for the laptop, desktop PC or smartphone or tablet you use, these individual characteristics can be linked to each other as soon as you use a service of the third-party provider with your login data. This enables the third-party provider to target our advertising campaigns across different devices.

The legal basis for this data processing is your consent, Art. 6 (1) (a) GDPR, provided through our consent banner. If you wish to revoke your consent, please click here : and adjust the settings via our banner. If you want to know more about our use of cookies and similar technologies, please refer to section 2.2.

Which third-party providers do we use in this context?

Google: We use the services of Google Ads for targeting, retargeting, tracking, and conversion tracking. Transfers to Google in the U.S. offer an adequate level of data protection for your data due to its certification under the adequacy decision (EU-U.S. Data Privacy Framework).

 

2.5.Contact Form

You can reach us via our contact form. To use it, we need the mandatory data marked with an asterisk (*) symbol. The legal basis for this processing is Art. 6 (1) (f) GDPR, since it is necessary to address your inquiry. 

Your data is solely used to address your inquiry. We delete it once it is no longer necessary, unless legal retention obligations apply. 

You have the right to object to the processing of your data for this purpose at any time. To do so, please contact privacy@remove-this.leschaco.com 

 

2.6.Social Plug-Ins

We deploy plugins from social media platforms. When you activate a plugin through the consent banner, the social media service will receive your IP address and information about your visit to our websites (usage data). This occurs regardless of whether you have an account with the social media service. If you are logged in, the data can be directly linked to your social media profile.

We have limited control over how much and in what manner the social media service processes personal data once the social plugins are activated. However, it is likely that the service will create usage profiles from your data for personalized advertising and inform other users of your activities on our websites. 

advertising and inform other users of your activities on our websites. 

The activation of social plugins relies on your consent, in accordance with Art. 6 (1) (a) GDPR. 

If you no longer want your personal data processed by activated social plugins, you can withdraw your consent to prevent future processing. To do so, follow this link: and adjust the settings via our banner.

The social media services we use in this context are the following:

PROVIDERADEQUATE LEVEL OF DATA PROTECTION/td>
X (formerly Twitter)X Corp has been certified under the Data Privacy Framework as having an adequate level of protection for data transfers to the United States.

 

2.7.Newsletter

You may register to receive our newsletter on our website to receive news, special offers and similar content from the entities which are part of the LESCHACO GROUP. Please note that we require certain data (your e-mail address at the minimum) to complete the newsletter registration.

We will only send you the newsletter if you have given us your express consent, in accordance to Art. 6 (1) (a) GDPR. After you have completed the newsletter registration on our website, you will receive a confirmation e-mail at the e-mail address you provided (double opt-in).

You may withdraw your consent at any time. An easy way to withdraw your consent is, for example, to use the unsubscribe link provided in every newsletter.

As part of the newsletter registration process, we store certain data in addition to the above-mentioned data, as far as it is necessary to prove that you have registered for our newsletter. This may include storing the complete IP address at the time of the registration or confirmation of the newsletter, as well as a copy of the confirmation mail sent by us.

We engage third parties to help us with delivering our newsletter messages. We have signed the appropriate contractual arrangements with them to ensure compliance with data protection laws.

 

2.8.Account Creation

To access additional functions on our website, registration is required, for which you have to enter your name, email address, and region. We use the data provided solely for the intended purpose of creating and managing an account. 

We only collect data necessary for registration and service provision. This processing is based on our legitimate interest to provide you with the protected are and to fulfill our contractual obligations with the company you represent or are employed by (Art. 6 (1) (f) GDPR). 

Your registration data is retained as long as you remain registered on our website and subsequently deleted, while legal retention periods are upheld.

 

2.9.Information Security

Your data is transferred between your computer and our server via the internet using TLS encryption. You can typically identify this by observing the closed lock symbol in the status bar of your browser and the address line starting with http://https://.

 

2.10.Embedding of additional technical third-party content and functions

We use technical functions and content from third-party providers, according to our legitimate interest to provide basic functionalities of the website (Art 6 (1) (f) GDPR). Accessing our pages causes the content from the third-party provider to be loaded. This gives the third-party provider information that you have visited our site, along with the usage data needed for this purpose.

Some examples of these third-party services are Google Tag Manager and CloudFare. Google and CloudFare have been certified under the EU-U.S. Data Privacy Framework as providing an adequate level of protection for personal data. 

 

2.11.Job Vacancies

You can apply for current job openings or submit a speculative application through our application portal. As part of the process, we require the information marked as mandatory in our application form. The legal basis for processing this data is Art 6(1) (b) GDPR, taking steps for entering into a contract.

Additionally, you can choose whether to provide further information marked as voluntary in the application form. Providing this data is optional. If you voluntarily provide personal data, we process it based on your consent under Art. 6 (1) (a) GDPR. You can withdraw your consent at any time by contacting the data controller listed in the imprint.

Your data will be treated confidentially. If an employment contract is established following the application process, we retain your application data as necessary for the employment relationship. If your application is unsuccessful, your data will be temporarily stored after the hiring process for a period determined by the specific jurisdiction.  Processing until deletion serves our legitimate interest in defending against any application-related claims or lawsuits (Art. 6 (1) (f) GDPR). 

If you wish to be considered for future vacancies, you can explicitly consent to be included in our talent pool. The legal basis for storing application documents and contacting you for suitable vacancies is Art. 6 (1) (a) GDPR. You can withdraw your consent at any time by contacting privacy@remove-this.leschaco.com 

 

3. Storage period

Unless we have already informed you in detail about the storage period of a specific category of data, we delete personal data when they are no longer required for the processing purposes and no legitimate reasons for storage prevent deletion.

4. Your rights as a data subject

When processing your personal data, the GDPR grants you certain rights as a data subject:

Right of access (Art. 15 GDPR): You have the right to receive information from us about whether and which data we process about you. This includes information on how long and for what purpose we process the data, the source of the data and the recipients or categories of recipients to whom we pass on the data. We can also provide you with a copy of this data.

Right to rectification (Art. 16 GDPR): You have the right to request that we rectify information about you that is not or no longer accurate without delay. In addition, you can request that we complete your incomplete personal data. If required by law, we will also inform third parties of this rectification if we have disclosed your personal data to them.

Right to erasure (Art. 17 GDPR): You have the right to request the erasure of your personal data without delay, provided that one of the reasons listed in detail in Art. 17 GDPR applies.

Right to restriction of processing (Art. 18 GDPR): You have the right to request the restriction of processing, for the duration of the assessment by the controller, if one of the requirements listed in Art. 18 GDPR is met, e.g. if you have objected to the processing.

Right to data portability (Art. 20 GDPR): In certain cases, which are listed in detail in Art. 20 GDPR, you have the right to receive your personal data in a structured, commonly used and machine-readable format or to request the transfer of this data to a third party.

Right to withdraw consent (Art. 7 GDPR): If the processing of data is based on your consent, you are entitled to withdraw your consent to the processing of your personal data at any time in accordance with Art. 7 (3) GDPR. Please note that the withdrawal of the consent only effective for the future. Processing that took place before the withdrawal is not affected.

Right to object (Art. 21 GDPR): If data is collected on the basis of Art. 6 (1) (f) GDPR (data processing for the protection of legitimate interests) or on the basis of Art. 6 (1) (e) GDPR (data processing for the protection of public interests or in the exercise of official authority), you have the right to object to the processing at any time for reasons arising from your particular situation. We will then no longer process the personal data unless there are demonstrably compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

Right to lodge a complaint with a supervisory authority (Art. 77 GDPR): Pursuant to Art. 77 GDPR, you have the right to lodge a complaint with a supervisory authority if you believe that the processing of your data violates data protection regulations. The right to lodge a complaint can be asserted in particular with a supervisory authority in the Member State of your habitual residence, your place of work or the place of the suspected infringement.

 

4.1.Asserting your rights

Unless otherwise described above, please contact us at privacy@remove-this.leschaco.com to assert your rights as a data subject.

 

5.Data Protection Officer

If you have any questions or complaints about how your personal data is processed, please contact our Data Protection Officer (DPO) through the contact details below:

 

FIRST PRIVACY GmbH

Peter Suhren

Konsul-Smidt-Straße 88

28217 Bremen

Germany

Web: www.first-privacy.com 

E-Mail: office@remove-this.first-privacy.com