I. Name and address of controller
The Controlling Body under the terms of data-protection law is:
WEVO-CHEMIE (Guangzhou) Co., Ltd.
Building B, No.1 Canghai Wu Road
Economic and Technological Development Zone
Huangpu District, Guangzhou
China
Telephone: +86 20 32 14 47 60
We are glad that you are interested in our company. Data protection is treated as particularly important at WEVO-CHEMIE (Guangzhou) Co., Ltd.
The processing of personal data, such as the name, address, e-mail address or telephone number of a data subject, is carried out at all times in compliance with the General Data Protection Regulation and in conformity with the specific national data protection rules applying to WEVO-CHEMIE (Guangzhou) Co., Ltd. Through this Data Protection Notice our company wishes to tell the public about the type, extent and purpose of the personal data which we collect, use and process. This Data Protection Notice will further serve to inform data subjects of their rights.
II. Use of internet pages
A. Capture of general information
If you access our website, information of a general kind will be captured automatically. This information (server log files) comprises e.g. the type of web browser, the operating system used, the domain name of your internet service provider, and similar material. All this information is such as allows of no conclusions to be drawn about your person. This information is technically necessary in order to supply correctly the content of websites which you have requested and is compulsory when using the internet. Anonymous information of this kind will be evaluated by us, in order to optimise our internet service and the technology behind it.
B. Erasure or blocking of data
We comply with the principles of data avoidance and data economy. Therefore we store your personal data only as long as this is necessary to achieve the purposes set out here or the various storage periods stipulated by law require. Once the purpose in question no longer applies or these periods have expired, the data in question are routinely erased or blocked in accordance with statutory regulations.
III. Data protection for customers
For purposes of the precontractual offer stage, or to fulfil an order or supply a service, we process personal data, such as address and contact details, information on conversations which have taken place, your requirements, offers, and further information which we receive from you. In the case of corporate customers we also process information, particularly contact details, relating to our personal contacts. For purposes of payment processing we may store and process data relating to your bank account or credit-card information. Should external partners be involved in supplying the service or fulfilling the order, information may be passed on to them, which is necessary to supply the performance. When processing this information, ancillary systems (IT environment, CRM/ERP systems, financial accounting) may be employed which service providers may access in the course of maintenance. In these cases we agree the requisite contracts for processing.
IV. Data protection in job applications and the job-application process
The controller will collect and process the personal data of job applicants for the purpose of handling the job-application procedure. This processing may be carried out by electronic means. This will be the case in particular if an applicant transmits application documents to the controller by electronic means, e.g. by e-mail or via an application form located on the website. Should the controller conclude an employment contract with the applicant, the data so transmitted will be stored for the purpose of handling these relations of employment, in compliance with statutory regulations. Should no employment contract be concluded by the controller with the applicant, the application documents will be automatically erased four months after the time when notice of refusal was given, providing no other legitimate interests on the part of the controller conflict therewith. Legitimate interest in this sense would be, for instance, a duty of evidence in proceedings under the German Equality of Treatment Act (AGG).
V. Data protection for suppliers
In the course of selecting suppliers or service providers we shall store and process information about you. In the course of scrutinising and evaluating suppliers we may obtain and additionally store further information, e.g. from credit-search agencies. For purposes of order handling we shall also process order-specific information over and above your standard data. In the case of company contacts we shall also process information, particularly contact details, relating to our personal contacts. When processing this information, ancillary systems (IT environment, CRM/ERP systems, financial accounting) may be employed, which the service providers may access for purposes of maintenance. In these cases we agree the requisite contracts for processing.
VI. General information
A. Legal bases of processing
For processing operations with respect to which we obtain a declaration of consent for a particular purpose, Article 6 (I) lit a) of the GDPR serves our company as the legal basis. Should the processing of personal data be required for performance of a contract, the contracting party to which the data is subject – as is the case, for instance, with processing operations which are necessary for a delivery of goods or the supply of another performance or counterperformance – the processing is based on Art. 6 (I) lit b) of the GDPR. This will also apply to such processing operations as are necessary to execute precontractual arrangements, e.g. in connection with enquires about our products or services. Should our company be subject to a legal duty by virtue of which processing of personal data is required, e.g. to fulfil duties of tax, the processing will be based on Art. 6 (I) lit c) of the GDPR. In rare cases the processing of personal data could be necessary in order to protect the vital interests of the data subject or another natural person. This would be the case, for instance, if a visitor to our firm were to be injured and then his name, his age, his medical-insurance details or other vital information had to be passed on to a medical practitioner, a hospital or other third parties. Then such processing would be based on Art. 6 (I) lit d) of the GDPR. Finally, processing operations could be based on Art. 6 (I) lit f) of the GDPR. This is the legal basis for processing operations which are not covered by any of the foregoing legal bases if such processing is necessary for the pursuit of a legitimate interest on the part of our company or a third party, unless outweighed by the interests, basic rights and basic freedoms of the data subject. Such processing operations are permitted to us in particular because they have been mentioned especially by the European legislators. These were of the opinion that a legitimate interest could be assumed if the data subject is a customer of the controller (Recital 47, Clause 2 of the GDPR).
B. Justified interests in processing pursued by the controller or a third party
If the processing of personal data is based on Article 6 (I) lit f) of the GDPR, our legitimate interest is the pursuit of our business operations to the benefit of all our employees and shareholders.
C. Purposes of data processing by the controller and third parties
We shall process your personal data only for the purposes set out in this Data Protection Notice. No transmission of your personal data to third parties will take place for purposes other than those so set out. We shall pass your personal data on to third parties only if:
- you have expressly given your permission for us to do so;
- the processing is necessary in order to handle a contract with yourself;
- the processing is necessary to fulfil a legal duty;
- the processing is necessary to pursue legitimate interests and no grounds exist to suppose that you have an outweighing protective interest in the non-further transmission of your data.
D. Transmission of data to non-EU countries
In individual cases, e.g. use of the web service in connection with Google services or newsletter services, transmission of personal data may be made to non-EU countries. In such circumstances we always ensure that proper guarantees are in place for the protection of your data. In the individual case you can receive a certification to this effect from our Data Protection Officer.
E. Erasure or blocking of data
We comply with the principles of data avoidance and data economy. Therefore we store your personal data only as long as this is necessary to achieve the purposes set out here or the various storage periods stipulated by law require. Once the purpose in question no longer applies or these periods have expired, the data in question are routinely erased or blocked in accordance with statutory regulations.
F. Statutory or contractual regulations on provision of personal data; when such provision is requisite for conclusion of contract; duty of data subject to provide personal data; possible consequences of non-provision
Please note that some provision of personal data is required by law (e.g. tax rules) or may arise under contractual regulations (e.g. information about contracting partner). It may sometimes be necessary for conclusion of a contract that a data subject provides us with personal data which we must subsequently process. The data subject will have a duty to provide us with personal data, for example, if our company is concluding a contract with him or her. Failure to provide these personal data would mean in consequence that the contract with the data subject could not be concluded. Prior to provision of personal data by the data subject, the data subject must contact one of our employees. Our employee will explain to the data subject whether the provision of these personal data is compulsory under law or contract, or is necessary for the conclusion of the contract, whether a duty exists to provide the said personal data, and what the consequences would be of failure to provide the personal data.
G. Existence of automated decision making
We are a responsible business and therefore operate no automated decision making or profiling.
H. Your rights as a data subject
You can exercise the following rights at all times, using the contact details given for our Data Protection Officer:
- Provision of information about your data stored with us and their processing,
- Correction of erroneous personal data,
- Erasure of your data stored with us,
- Restriction of data processing, insofar as we cannot yet erase your data due to legal obligations,
- Objection to the processing of your data at our company, and
- Data transferability, insofar as you have consented to data processing or have concluded a contract with us.
- Should you have given a declaration of consent, you can revoke it at any time with effect for the future.
You can contact the supervisory authority competent for your area with a complaint at any time. The supervisory authority competent for your area will depend on the German state in which you are resident, in which you work, or in which the alleged infringement has taken place. You will find a list of supervisory authorities (for the non-public sector) including addresses at:
https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.
I. Amendment to our data protection provisions
We reserve the right to amend this Data Protection Notice from time to time, in order that it may meet current legal requirements, or to implement changes to our services in the Data Protection Notice, e.g. should new services be launched. A repeat visit will then be governed by the new Data Protection Notice.
J. Questions to the Data Protection Officer
If you have any questions about data protection, please write us an e-mail, or contact our Data Protection Officer directly:
Michael Weinmann, www.dsb-office.de, e-Mail: michael.weinmann@dsb-office.de, Tel.: +49 173-763 29 62
This Data Protection Notice has been drawn up using the Data Protection Notice Generator of activeMind AG and the Data Protection Generator ofDGD Deutsche Gesellschaft für Datenschutz GmbH, and supplemented or adapted by Michael Weinmann.