Privacy Policy

Privay Policy

With the following information, we want to give you as a “data subject” an overview of the processing of your personal data by us and your rights under data protection laws. Your personal data is always processed in accordance with the Basic Data Protection Regulation (hereinafter “GDPR”) and all applicable country-specific data protection regulations. We have implemented numerous technical and organizational measures to ensure the highest possible level of protection when processing your personal data.

I.      Scope

The following privacy policy applies to the following website: https://www.marquard.eu/ as well as associated online presences (e.g. our social media channels)

II.    Controller

Controller within the meaning of the GDPR ist:

Marquard Engineering GmbH & Co. KG

Schöttmannshof 10a

46539 Dinslaken

E-Mail: info@marquard.eu

Website: https://www.marquard.eu/

III.  Data Protection Officer

If you have any questions or suggestions on the subject of data protection, you can contact our data protection officer at any time:

Niklas Hanitsch
secjur GmbH
Steinhöft 9
D-20459 Hamburg
Telefon: +49 40 228 599 520
E-Mail: dsb@secjur.com

IV. Technology 

1.   SSL / TLS encryption

To ensure the security of data processing and to protect the transmission of confidential content, we use SSL or TLS encryption. You can recognize the presence of an encrypted connection by the fact that in the address line of the browser instead of a “http://” a “https://” is displayed as well as by the lock symbol in your browser line.

2.   Data collection when visiting the website / storage of log files

During the purely informational use of our website, we only collect personal data that your browser transmits to our server (server log files). With each call to our website, a number of general data and information. are collected, which we store in the log files of the server.

a)     Purpose of processing

  • Correct delivery of the contents of our website
  • Optimization of the contents of our website
  • Ensuring the permanent operability of our IT systems and the technology of our website
  • Static evaluation to improve the level of data protection and data security
  • Provision of information to law enforcement authorities in the event of a cyber attack

b)     Processed data

  • Usage and metadata (e.g. browser types and versions used, the operating system used by the accessing system, the website from which an accessing system accesses our website (so-called referrer), the sub-websites that are accessed via an accessing system on our website, the date and time of access to the website, an abbreviated Internet protocol address (anonymized IP address), the Internet service provider of the accessing system).

c)     Legal basis

  • Legitimate interests (Art. 6 para. 1 p. 1 lit. f GDPR). The legitimate interest corresponds to the purposes mentioned above.

d)     Storage period

We delete your personal data as soon as they are no longer required to achieve the purpose for which they were collected. If we collect personal data for the provision of our website, it is deleted when the respective session has ended. We delete personal data that we store in log files after seven days at the latest.

e)     Security measures 

Server log files are stored separately from any other personal data you have provided.

V.    Cookies

1.     General information

We use cookies on our website. These are text files that your browser automatically creates and that are stored on your IT system when you visit our site. In the cookie, information is stored that arises in each case in connection with the specific end device used. This does not mean, however, that we thereby gain direct knowledge of your identity.

2.     Technically necessary cookies

We use technically necessary cookies. These are cookies that are technically necessary to provide you with an explicitly requested information society service.

a)     Purpose of processing

  • Offering our services
  • Enabling the use of our website functions

b)     Legal basis

  • Legitimate interests (Art. 6 para. 1 p. 1 lit. f GDPR). The legitimate interest corresponds to the purposes mentioned above.

3.     Technically not necessary cookies

We use cookies that are not technically necessary. These are cookies that are not technically necessary for the provision of an information society service. As a rule, these are third-party cookies with which we can analyze and track the surfing behavior of users.

a)     Purpose of processing

  • Reach measurement and tracking
  • Evaluation of visitor behavior and profiling
  • Optimization of our offer

b)     Legal basis

  • Consent (Art. 6 para. 1 p. 1 lit. a GDPR)

VI.   Data transmission to external recipients

In the course of our activities, we transfer personal data to external parties (e.g. persons, companies or legally independent organizational units). Details on this can be found below under the respective third-party providers.

VII.    Data processing in countries outside the European Union and the European Economic Area

We process personal data in a third country. These are countries outside the European Union (hereinafter “EU”) and the European Economic Area (hereinafter “EEA”). We only process data in third countries where there is an adequate level of data protection as defined in Art. 44-49 GDPR. Details on the specific level of data protection in the respective third country can be found below under the relevant third-party providers.

VIII.  Contact

1.     General information

When you contact us (e.g. via contact form, e-mail or by telephone), we process personal data from you.

a)     Processed data

  • Inventory data (e.g. first and last name, address)
  • Contact data (e.g. e-mail address, telephone number)
  • Metadata (e.g. IP address)
  • Content data (e.g. text content entered)

b)     Purpose of processing

  • Answering contact requests
  • Communication

c)     Legal basis 

  • Contract performance and implementation of pre-contractual measures (Art. 6 para. 1 p. 1 lit. b. GDPR), if your request is based in connection with pre-contractual measures or with an existing contract with us.
  • Legitimate interests (Art. 6 para. 1 p. 1 lit. f. GDPR). If your request is independent of contractual or pre-contractual measures, our legitimate interests constitute the legal basis. The legitimate interest corresponds to the purposes mentioned above.

d)     Storage period

We delete your personal data as soon as they are no longer required to achieve the purpose for which they were collected. In the context of contact inquiries, this is generally the case when the circumstances indicate that the specific matter has been conclusively processed.

IX. Application

1.     General information

We offer you the possibility to apply for job offers and to send us your application online or by mail.

a)     Processed data

  • Inventory data (e.g. first and last name, address),
  • Contact data (e.g. e-mail address, telephone number),
  • Application data (e.g. cover letter, resume, certificates and other evidence).

b)     Purpose of processing

  • Conducting the application process and finding suitable applicants.

c)     Legal basis 

  • Contract fulfillment and implementation of pre-contractual measures (Art. 6 para. 1 p. 1 lit. b, Art. 88 para. 1 GDPR in conjunction with § 26 para. 1 federal data protection act).
  • Consent (Art. 6 para. 1 p. 1 lit. a GDPR) If we obtain your consent (e.g. for inclusion in our applicant pool), this constitutes the legal basis for data processing.

d)     Storage period

If an employment contract is established after completion of the application process, the personal data provided may be processed further. Otherwise, we generally retain the data for six months. We then delete all personal data. Longer storage is possible if we include the personal data in our applicant pool after obtaining your consent.

X. Web analytics and optimization services

1.     General information

We perform web analytics. In doing so, we are able to process your interests, certain behaviors or demographic data. This allows us to analyze how you use our online offering and its content and functions. User profiles can be created as part of the web analysis.

2.     Google Tag Manager

We use the Google Tag Manager. This gives us the opportunity to manage website tags and integrate services into our online offering. The Google Tag Manager itself does not enable the creation of user profiles.

e)     Provider

Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland, parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (Google).

f)      Purpose of processing

  • Installation and updating of web page tags

g)     Legal basis

  • Legitimate interests (Art. 6 para. 1 p. 1 lit. f GDPR). The legitimate interest corresponds to the purposes mentioned above.

h)     Data protection outside the EU and EEA

i)       Storage period

We delete your personal data as soon as they are no longer required to achieve the purpose for which they were collected.

j)       Privacy policy

Further information on data processing can be found in the privacy policy of Google.

3.     Google Analytics

We use Google Analytics. Google Analytics is a tracking tool that allows us to analyze and evaluate the use of our online offers. This enables us to optimize our online offer and improve advertising campaigns.

k)     Provider

Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland, parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (Google).

l)       Processed data

  • Browser information, click path, date and time of visit, device information, downloads, Flash version, location information, IP address (anonymized), JavaScript support, pages visited, purchase activity, referrer URL, usage data, widget interactions.

m)   Purpose of processing

  • Optimization of our online offer

n)     Legal basis

  • Consent (Art. 6 para. 1 p. 1 lit. a GDPR)

o)     Data protection outside the EU and EEA

p)     Storage period

We delete your personal data as soon as they are no longer required to achieve the purpose for which they were collected. In the context of the use of Google Analytics, we store your personal data for 14 months.

q)     Opt-out-cookie

You can prevent the collection of your personal data by Google by clicking on the following link: Disable Google Analytics. This sets an opt-out cookie that prevents the future collection of your data when you visit our website. The opt-out cookie is only valid in this browser and only for our website and is stored on your device. If you delete the cookies in this browser, you will have to set the opt-out cookie again. You can prevent the installation of cookies by setting the browser software accordingly; however, we would like to point out that in this case, not all functions of this website may be used to their full extent.

r)      Privacy policy

Further information on data processing can be found in the privacy policy of Google.

XI. Social networks and video streaming platforms

1.     General information

We maintain presences in social networks and video streaming platforms in order to be able to communicate with you and inform you about our services.

Please note that your data may be processed outside the European Union or the European Economic Area. This may result in risks such as more difficult enforcement of user rights.

User data is often processed in social networks for advertising purposes or to analyze user behavior by the providers, without us being able to influence this. In addition, the providers often create usage profiles, on the basis of which user-based advertising can subsequently be placed inside and outside the social network. Cookies are often used for this purpose or the usage behavior is directly assigned to your own member profile of the social networks (provided you are logged in here).

Since we do not have access to the databases of the respective providers, we would like to point out that it is best to assert your rights directly with the respective provider. However, if you require assistance, please feel free to contact us. Further information on the processing of your data in social networks and the possibility to make use of your right of objection or revocation (opt-out) are listed below.

a)     Processed data

  • Inventory data (e.g. first and last name, address, age, gender);
  • Content data (e.g., texts, photographs, videos); and
  • Usage data (e.g. visit to websites, interests);
  • Metadata (e.g. device information, IP address).

b)     Purpose of processing

  • Modern way of user communication
  • Provision of information about own services
  • Tracking, marketing, affiliate tracking

c)     Legal basis 

  • Legitimate interests (Art. 6 para. 1 p. 1 lit. f GDPR). The legitimate interest corresponds to the purposes mentioned above.
  • Consent (Art. 6 para. 1 p. 1 lit. a GDPR). If you as a user of the respective social media must consent to the data processing, the legal basis is your consent.

2.   Facebook

a)     Provider

Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Irland, parent company: Facebook, 1 Hacker Way, Menlo Park, CA 94025, USA (Facebook).

b)     Joint controllership

As a fan page operator, Facebook provides us with so-called “Facebook Insights”. These are various statistics that provide us with information about how our Facebook fan page is used. To create these statistics, data provided by you (including personal data) is processed by Facebook and us as joint controllers within the meaning of Art. 26 (1) GDPR. We have jointly entered into an agreement with Facebook pursuant to Art. 26 GDPR, the content of which you can read here.

c)     Legal basis and purpose of processing of Facebook

Information on the legal basis and the purposes of the processing of Facebook can be found here.

d)     Data protection outside the EU and EEA

Standard data protection clauses: We have agreed standard data protection clauses with Facebook.

Further Security measures: Facebook has implemented further security measures. You can find them here.

e)     Privacy policy

Further information on data processing can be found in the privacy policy of Facebook.

f)      Opt-out and advertising settings

You can find an opt-out and Facebook’s web settings here.

3.   Instagram

g)     Provider

Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Irland, parent company: Facebook, 1 Hacker Way, Menlo Park, CA 94025, USA (Facebook). 

h)     Data protection outside the EU and EEA

Standard data protection clauses: We have agreed standard data protection clauses with Instagram.

Further Security measures: Instagram has implemented further security measures. You can find them here.

i)       Privacy policy

Further information on data processing can be found in the Privacy policyn von Instagram.

j)       Opt-Out und Werbeeinstellungen

You can find an opt-out as well as the advertising settings of Instagram here

4. LinkedIn

a)     Provider

LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Irland (LinkedIn).

b)     Joint controllership

As a page operator, LinkedIn provides us with so-called “page insights”. These are various statistics that provide us with information about how our LinkedIn page is used. To create these statistics, data provided by you (including personal data) is processed by LinkedIn and us as joint controllers within the meaning of Art. 26 (1) GDPR. We have entered into an agreement with Facebook pursuant to Art. 26 GDPR, the content of which you can read here.

c)     Data protection outside the EU and EEA

  • Standard data protection clauses: We have agreed standard data protection clauses with LinkedIn.
  • Further security measures: LinkedIn has implemented further security measures. You can find these here.

d)     Privacy policy

Further information on data processing can be found in the privacy policy of LinkedIn.

5. Xing

a)     Provider

XING SE, Dammtorstraße 30, 20354 Hamburg (XING).

Privacy policy und Widerspruchsmöglichkeit (Opt-Out)

Further information on data processing and an opt-out option can be found in the privacy policy of XING.

6. Youtube

a)     Provider

Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland; Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (Google).

b)     Data protection outside the EU and EEA

  • Standard data protection clauses: We have agreed standard data protection clauses with Google.

c)     Privacy policy

Further information on data processing can be found in the privacy policy of Google.

d)     Opt-out and advertising settings

You can find an opt-out and Facebook’s web settings here.

XII. Online map services

We use online map services.

1.     General information

a)     Processed data

  • Usage data (e.g. web pages visited, interest in content, time of access)
  • Meta and communication data (e.g. IP address)
  • Location data

b)     Purpose of processing 

  • Visual representation of geographical information in the form of interactive maps, facilitating your journey

c)     Legal basis 

  • Consent (Art. 6 para. 1 p. 1 lit. a GDPR).

2.  Google Maps

a)     Provider

Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (Google).

Personal data is transferred to Google in the USA. The data transfer takes place regardless of whether or not you have a user account with Google or whether you are logged into your Google user account. If you are logged in to Google, your data will be directly assigned to your account. If you do not want this, you must log out of your Google user account. Google stores your data as usage profiles and evaluates them. You have the right to object to the creation of these user profiles, whereby you must contact Google to exercise this right.

b)     Data protection outside the EU and EEA

  • Standard data protection clauses: We have agreed standard data protection clauses with Google.

c)     Privacy policy

Further information on data processing can be found in the privacy policy of Google.

XIII. Marketing

1.     General information

We process personal data for online marketing purposes. In particular, we provide advertising content. These are geared to potential user interests. User profiles are created for this purpose. These are regularly stored in cookies.

a)     Processed data 

  • Usage data (e.g. websites visited, interest in content, time of access).
  • Meta and communication data (e.g. IP address).
  • Location data

b)     Purpose of processing 

  • Reach measurement and tracking
  • Evaluation of visitor behavior and profiling
  • Improving our offer and providing customer-friendly services

2.     Google Ad Manager (formely Google DoubleClick)

a)     Provider

Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, Parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (Google).

By using the service, we are able to place ads on Google’s advertising network to present them to users who have a potential interest in the ads.

b)     Legal basis

  • Consent (Art. 6 para. 1 p. 1 lit. a GDPR).

c)     Data protection outside the EU and EEA

  • Standard data protection clauses: We have agreed standard data protection clauses with Google.

d)     Privacy policy

Further information on data processing can be found in the privacy policy of Google.

XIV. Fonts

  1. General information

Our website uses so-called web fonts for the uniform display of fonts. When you call up a page, your browser loads the required web fonts into your browser cache in order to display texts and fonts correctly.

  1. a) Processed data

– IP address

  1. b) Purpose of processing

– Uniform and appealing presentation of our website.

  1. c) Legal basis

– Legitimate interest (Art. 6 para. 1 p. 1 lit. f GDPR). The legitimate interest corresponds to the above-mentioned purposes.

  1. Google Fonts

a)     Provider

Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland, Parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (Google).

  1. b) Description

Google Fonts is a service for providing various fonts for our online offer.

  1. c) Privacy policy

Further information on data processing can be found in Google’s privacy policy: https://policies.google.com/privacy

  1. d) Further information about Google Fonts:

Further information on Google Fonts can be found here: https://developers.google.com/fonts/faq

XV. Rights of the data subject

1.      Right to confirmation

You have the right to request confirmation from us as to whether personal data concerning you is being processed.

2.     Right of access (Art. 15 GDPR)

You have the right to receive from us at any time free of charge information about the personal data stored about you, as well as a copy of this data in accordance with the statutory provisions.

3.     Right to retification (Art. 16 GDPR) 

You have the right to request the correction of inaccurate personal data concerning you. Furthermore, you have the right to request the completion of incomplete personal data, taking into account the purposes of the processing.

4.     Right to erasure (Art. 17 GDPR)

You have the right to demand that personal data concerning you be deleted immediately if one of the reasons provided for by law applies and insofar as the processing or storage is not necessary.

5.     Right to restriction of processing (Art. 18 GDPR) 

You have the right to demand that we restrict processing if one of the legal requirements is met.

6.     Right to data portability (Art. 20 GDPR)

You have the right to receive the personal data concerning you that you have provided to us in a structured, common and machine-readable format. Furthermore, you have the right to transfer this data to another controller without hindrance from us, to whom the personal data has been provided, provided that the processing is based on consent pursuant to Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR or on a contract pursuant to Art. 6 (1) (b) GDPR and the processing is carried out with the aid of automated procedures, unless the processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in us.

In addition, when exercising your right to data portability pursuant to Article 20 (1) GDPR, you have the right to obtain that the personal data be transferred directly from one controller to another controller, to the extent that this is technically feasible and provided that this does not adversely affect the rights and freedoms of other individuals.

7.   Right to object (Art. 21 GDPR)

You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you which is carried out on the basis of Art. 6 (1) (e) (data processing in the public interest) or (f) (data processing on the basis of a balance of interests) GDPR.

This also applies to profiling based on these provisions within the meaning of Art. 4 No. 4 GDPR.

If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the assertion, exercise or defense of legal claims.

In individual cases, we process personal data to conduct direct marketing. You may object to the processing of personal data for the purpose of such advertising at any time. This also applies to profiling, insofar as it is related to such direct advertising. If you object to us processing for direct marketing purposes, we will no longer process the personal data for these purposes.

In addition, you have the right, on grounds relating to your particular situation, to object to processing of personal data concerning you which is carried out by us for scientific or historical research purposes, or for statistical purposes pursuant to Article 89(1) of the GDPR, unless such processing is necessary for the performance of a task carried out in the public interest.

You are free to exercise your right to object in connection with the use of information society services, notwithstanding Directive 2002/58/EC, by means of automated procedures using technical specifications.

8.     Revocation of consent under data protection law

You have the right to revoke your consent to the processing of personal data at any time with effect for the future.

9.     Complaint to a supervisory authority

You have the right to complain about our processing of personal data to a supervisory authority responsible for data protection.

XVI. Storage period

We process and store your personal data only for as long as required by the purpose of storage or as stipulated by legal regulations.

If the storage purpose ceases to apply or if a prescribed storage period expires, the personal data will be routinely blocked or deleted in accordance with the statutory provisions. The criterion for the duration of storage of personal data is the respective statutory retention period. After expiry of the period, the corresponding data is routinely deleted, provided that it is no longer required for the fulfillment or initiation of the contract.

XVII. Actuality and changes of the privacy policy

This privacy policy is currently valid and has the following status: December 2021.

If we continue to develop our website and our offers or if legal or regulatory requirements change, it may be necessary to amend this privacy policy. You can access the current privacy policy at any time here