1. Data privacy at a glance
The following notes provide an easy overview of what happens to your personal data when you visit this website. Personal data is all data with which you can be identified personally. For detailed information about data privacy, please see the data privacy declaration below this text.
Data collection on this website
Who is responsible for data collection on this website?
Data processing on this website is done by the website operator. You can find the operator’s contact data in the section “Note about the responsible party” in this data privacy declaration.
How do we collect your data?
On the one hand, we collect your data when you provide it to us. This can be data which you enter in a contact form, for example.
Other data is collected automatically or by our IT systems after you have granted your consent when visiting the website. This is especially technical data (e.g., internet browser, operating system, or time the page was called up). Collection of this data is done automatically as soon as you visit this website.
What do we use your data for?
Some of your data is collected to guarantee error-free provision of the website.
What rights do you have with regard to your data?
You have the right to receive information free of charge at any time about the origin, recipient, and purpose of the personal data we have saved. You also have a right to request the correction or deletion of this data. If you have granted consent for data processing, you can revoke this consent for the future at any time. Furthermore, you have the right to request the restriction of processing of your personal data under some circumstances. You also have a right to appeal to the responsible supervisory authority.
If you have questions about this or other aspects of data privacy, you can contact us at any time.
2. General instructions and mandatory information
The operator of these pages takes the protection of your personal data very seriously. We treat your personal data confidentially and according to the applicable data privacy regulations and this data privacy declaration.
When you use this website, various personal data is collected. Personal data is data with which you can be identified personally. This data privacy declaration explains what data we collect and what we use it for. It also explains how and for what purpose this is done.
We point out that data transmission on the internet (e.g., during communication via e-mail) can be subject to security gaps. Gap-free protection of data against access by third parties is not possible.
Note about the responsible party
The party responsible for data processing on this website is:
BB Engineering GmbH
Leverkuser Str. 65
Telephone: +49 (0) 2191 9510 – 100
The responsible party is the natural or legal person who by itself or together with others decides about the purposes and means of processing of personal data (e.g., name, e-mail addresses, etc.).
Duration of storage
Insofar as no more specific storage duration is named in this data privacy declaration, your personal data remains with us until the purpose of the data processing ceases to apply. If you make a legitimate request for deletion or revoke consent to data processing, your data will be deleted unless we have other legally permissible reasons for storing your personal data (e.g., retention periods under tax or commercial law); in the latter case, the data will be deleted after these reasons no longer apply.
General notes about the legal bases of data processing on this website
Insofar as you have granted permission for data processing, we process your personal data based on Art. 6 Para. 1 let. a GDPR and Art. 9 Para. 2 let. a GDPR, insofar as special data categories are processed according to Art. 9 Para. 1 GDPR. In case of express consent for the transmission of personal data to third countries, data processing is also done based on Art. 49 Para. 1 let. a GDPR. Insofar as you have agreed to storage of cookies or in access to information on your end user device (i.e., via device fingerprinting), data processing is also done based on § 25 Para. 1 TTDSG. Consent can be revoked at any time. If your data is required to fulfil a contract or perform pre-contractual measures, we process your data based on Art. 6 Para. 1 let. b GDPR. Furthermore, we process your data, insofar as it is required to fulfil a legal obligation, based on Art. 6, Para. 1 let. c GDPR. Furthermore, data processing can be done based on our justified interest according to Art. 6 Para. 1 let. f GDPR (example: the processing of a server log.) The following paragraphs of this data privacy declaration will inform about the legal bases applicable in each individual case.
SSL or TLS encryption
For security reasons and to protect the transmission of confidential content, for example orders or enquiries which you sent to us as the page operator, this page uses SSL or TLS encryption. You can detect an encrypted connection when the browser’s address line changes from “http://” to “https://” and the lock symbol appears on the browser line.
When the SSL or TLS encryption is activated, the data which you are transmitting to us cannot be read by third parties.
Data privacy officer
We have named a data privacy officer for our company.
Dr. Jörn Voßbein of UIMC Dr. Voßbein GmbH & Co KG
Telephone: 0202 – 9467726-200
Forwarding of the data
Forwarding to third parties for commercial or non-commercial purposes is not done without your express consent. We only forward your personal data to third parties if this is legally admissible and/or required. In some cases, we use providers in the course of order processing according to Article 28 GDPR. Here, the full responsibility for the data processing remains with us. Furthermore, we use links in our internet presence; see below for more details.
Note about data forwarding to the USA and other third countries
Among other things, we use tools from companies headquartered in the USA or other third countries which are not safe according to data privacy law. If these tools are active, your personal data may be transferred to these third countries and processed there. We point out that no data privacy level comparable to that in the EU can be guaranteed in these countries. For example, US companies are obligated to hand over personal data to security agencies without you as the data subject being able to take legal action against this. Therefore, the possibility cannot be excluded that US authorities (e.g., security agencies) process, evaluate, and permanently store your data on US servers for monitoring purposes. We have no influence on these processing activities.
Rights of affected parties
Right to information, correction, and deletion
In the context of the applicable statutory provisions, you have the right to receive information free of charge at any time about your saved personal data, its origin and recipient, and the purpose of the data processing, and if necessary, a right to correct or delete this data. If you have questions about the topic of personal data, you can contact us at any time.
Right to restrict processing
You have the right to have the processing of your personal data restricted. This is possible, for example, if your data was collected improperly or the data processing is done illegally. In case processing is restricted, the data may only be processed only in narrowly defined cases.
Right to data transmissibility
You have the right to have data which we are processing automatically based on your consent or to fulfil a contract handed over to you or to a third party in a common, machine-readable format. Insofar as you request direct transmission of the data to another responsible party, this is only done insofar as it is technically feasible.
Right to revoke your consent for data processing
Many data processing actions are only possible with your express consent. You can revoke consent already granted at any time. The legality of data processing which has been done up to consent is unaffected by the revocation.
Right to appeal to the responsible supervisory authority
In case of violations of the GDPR, the affected parties have a right to appeal to a supervisory authority, in particular in the member state in which they usually reside, work, or the location of the alleged violation. The right of appeal is without prejudice to other administrative or judicial remedies.
3. Data collection on this website
Our internet pages use so-called “cookies”. Cookies are little text files and do no damage to your end user device. They are either saved temporarily for the duration of a session (session cookies) or permanently (permanent cookies) on your end user device. Session cookies are deleted automatically after your visit is complete.
In some cases, third-party cookies can also be saved on your end user device if you visit our page (third-party cookies). These enable us or you to use particular services of the third-party company (e.g., cookies for payment processing).
Cookies which are required for execution of electronic communications, for the provision of particular functions you have requested (e.g., for the shopping cart function) or for optimisation of the website (e.g., cookies to measure the web audience)(necessary cookies) are saved based on Art. 6 Para. 1 let. f GDPR, insofar as no other legal basis is specified. The website operator has a justified interest in saving necessary cookies for the technically perfect and optimised provision of its services. Insofar as content for the saving of cookies and comparable recognition technologies has been obtained, the processing is done exclusively based on this consent (Art. 6 Para. 1 let. a GDPR and § 25 Para. 1 TTDSG); the consent can be revoked at any time.
You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for particular purposes or generally, as well as activate the automatic deletion of cookies when closing the browser. With the deactivation of cookies, the functionality of this website can be restricted.
Server log files
The provider of the pages collects and automatically saves information in so-called server log files, which your browser transmits to us automatically. These are:
- Browser type and browser version
- Operating system used
- Referrer URL
- Host name of the accessing computer
- Time of the server enquiry
- IP address
- Time spent on the pages
There is no combination of this data with other data sources.
The collection of this data is done based on Art. 6 No. 1 let. f GDPR. The website operator has a justified interest in the technically perfect display and optimisation of its website – the server log files must be collected for this. Further purposes can be the evaluation of system security and stability, as well as other administrative purposes.
In the course of our job descriptions on our career page, we collect your name, e-mail address, and telephone number in order to be able to contact you. In addition, you can upload your CV, letter of application and other documents with details about your person. We process this personal data with regard to you in connection with your application process and to check your potential work-related employability. Processing is done for the purpose of a sound personnel decision based on Art. 6 Para. 1 S. 1 let. b GDPR. In addition, evaluations using objective, non-discriminatory criteria are also saved; insofar as this is permissible in an individual case, publicly available data about your person is also saved.
The data you have provided is required to process your application. Without this data, we cannot consider your application.
Your data will not be forwarded to third parties. We will only pass on your personal data to other companies in our group of companies if you have given us your consent to do so, in order to provide you with further options in our group of companies.
Your data will be kept as long as is required for the purposes of the personnel selection process described above. If you object to data processing during the personnel selection process, the data – insofar as no other legal retention obligations speak against this – will be deleted.
The data will be deleted after the completion of the application process and after expiration of any period for filing suit unless you have given your consent to store your application for additional job offers. Applications at your own initiative are saved and deleted until you revoke your consent or for up to two years.
Enquiries via e-mail, telephone or telefax
If you contact us via e-mail, telephone or telefax, we save and process your enquiry, including all personal data relating to it (name, enquiry), for the purpose of responding to your request. We never forward this data without your consent.
The processing of this data is done based on Art. 6 Para. 1 let. b GDPR, insofar as your enquiry relates to the fulfillment of a contract or is required for performance of pre-contractual measures. In all other cases, the processing relies on our justified interest in the effective processing of enquiries directed at us (Art. 6 Para. 1 let. f GDPR) or on your consent (Art. 6 Para. 1 let. a GDPR) insofar as it was queried; consent can be revoked at any time.
The contact enquiries you direct to us remain with us until you request their deletion, revoke your consent for saving or the purpose for the data storage no longer applies (e.g. after completion of the processing of your enquiry). Mandatory statutory provisions – especially legal retention periods – remain unaffected.
Download of a whitepaper
To obtain product information, you can download a whitepaper from our website. For this, we request your e-addresses, your name, and your company. We will then send you the download link via e-mail.
Only if you expressly provide your consent will we contact you after the download. After the download, we will save your data for 12 months or until you revoke it earlier than that.
4. Linking, plug-ins and tools
Our website links to the YouTube website. Operator of these pages is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, a subsidiary of Google LLC.
For data privacy reasons, we have decided only to establish a link to this page instead of using YouTube plug-ins. Therefore, we do not process any personal data from you in this regard, and YouTube cannot automatically collect any personal data from you when you visit our website, provided you are logged out of your YouTube account when you visit our website. This technical solution allows you to decide whether and when you transmit personal data to YouTube. Only if you actively click the YouTube button does your browser establish a connection to the YouTube servers and transmit your user data to YouTube. YouTube will forward the information processed to third parties, e.g., US authorities, insofar as this is legally required or insofar as third parties process this data at the behest of YouTube. We have no influence on the type and scope of your data which is processed by YouTube.
For additional information about handling user data, see the YouTube data privacy declaration at: www.google.de/intl/de/policies/privacy.
Our website links to the LinkedIn website. Operator of these pages is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland. Instead of using plug-ins, we only link to LinkedIn. Therefore, your personal data is not transmitted automatically to Linked in when you visit our website. With the linking, LinkedIn only processes your personal data if you actively click the LinkedIn button. LinkedIn will forward the information processed to third parties, e.g., US authorities, insofar as this is legally required or insofar as third parties process this data at the behest of LinkedIn. We have no influence on the type and scope of your data that is processed by LinkedIn.
For additional information about the handling of your data, see LinkedIn’s data privacy declaration: https://www.linkedin.com/legal/privacy-policy?_l=de_DE [external page].
Google web fonts (local hosting)
For the uniform display of fonts, this page uses so-called web fonts, which are provided by Google. The Google fonts are installed locally. There is no connection to the Google servers.
Liability for own content
The content of these pages was created with the greatest care. However, we provide no guarantee of the correctness, completeness, or up-to-dateness of the content. As a service provider, we are responsible for our own content on these pages according to general laws.
Liability for links (third-party providers’ content)
Cross-references (“links”) from our own content to other providers’ content must be distinguished. We have no influence on their content; the provider of the content or operator of the pages is responsible for the content of the linked pages.
We reserve the right to adapt this data privacy declaration occasionally, so that it always corresponds to current legal requirements or to implement changes to our services in the data privacy declaration, e.g., when introducing new services. The new data privacy declaration then applies for your next visit.