DATA PROTECTION STATEMENT
The purpose of this statement is to inform you about the collection of personal data when you use our website. Personal data refers to all data that can be linked to you personally, e.g. name, address, email addresses, user behaviour. We have implemented technical and operational precautionary measures in order to protect your data against accidental or intentional manipulation, loss, destruction or unauthorised access. Our security processes are checked regularly and adapted to keep pace with technological progress.
1. Data controller
The controller according to Article 4(7) of the EU General Data Protection Regulation (GDPR) is
LAP GmbH Laser Applikationen
21337 Lüneburg, Germany
2. Controller contact details
You may contact our controller at Datenschutz@lap-laser.com or at our postal address, adding the text “Data controller”.
3. Your rights
You have the following rights with respect to us concerning your personal data:
3.1 General rights
You have the right to request information, to rectification, erasure, restriction of processing, to object to processing and to data portability. If the processing of the data is based on your consent, you have the right to withdraw this consent with effect for the future.
3.2 Rights with regard to data processing based on legitimate interests
In accordance with Article 21(1) GDPR, you have the right to object to the processing of your personal data for reasons relating to your personal situation where the processing of the data is based on point (e) of Article 6(1) GDPR (data processing in the public interest) or based on point (f) of Article 6(1) GDPR (data processing to protect a legitimate interest); this also applies to any profiling performed on the basis of this provision. Should you object to the processing of your data, we will no longer process your personal data unless we can provide proof of compelling legitimate grounds for the processing of the data that override your interests, rights and freedoms or unless the processing is performed for the establishment, exercise or defence of legal claims.
3.3 Rights with regard to direct marketing
If we process your personal data for direct marketing purposes, you have the right, in accordance with Article 21(2) GDPR, to object at any time to the processing of your personal data for the purposes of marketing of this kind. This also applies with regard to profiling if this is connected with such direct marketing.
If you object to the processing of your data for the purposes of direct marketing, we will no longer process your personal data for these purposes.
3.4 Right to lodge a complaint with a supervisory authority
You also have the right to lodge a complaint with a competent data protection supervisory authority with regard to our processing of your personal data.
4. Collection of personal data when you visit our website
If you use our website for information purposes only, i.e. if you do not register as a user or transmit information to us by any other means, we will only collect the personal data that your browser transmits to our server. If you would like to view our website, we will collect the following data, which is technically necessary in order for us to be able to display our website to you and to ensure stability and security. The legal basis for this is point (f) of Article 6(1) GDPR:
–IP address, date and time of request, time zone difference from Greenwich Mean Time (GMT), content of request (specific page), access status/HTTP status code, respective quantity of data transmitted, website from which the request was sent, browser, operating system, and its interface, browser software language and version.
5. Contacting us via email or using our contact form
When you contact us via email or using a contact form, we will store the data you provide (your email address, where applicable your name and telephone number) for the purposes of responding to your questions. If we request information on our contact form that is not necessary for contacting you, these fields are always marked as optional. We use these details to substantiate your request and improve our handling of your query. Where appropriate, we will forward your request directly to the sales partner responsible for you. This may entail the transmission of data to independent third parties outside of the EU/EEA. These details are provided on a purely voluntary basis and subject to your consent, point (a) of Article 6(1) GDPR. With respect to data that is transmitted to third parties, we are no longer the controller for the purposes of the GDPR.
We delete the data we collect in this context as soon as its storage is no longer necessary or, if statutory storage obligations apply, restrict its processing.
You can apply to our company by electronic means, particularly via email or web forms. We will, of course, use the details you provide solely for the purposes of processing your application and will not pass them on to third parties. Please note that any unencrypted emails you send cannot be protected against access by third parties during transmission.
If you have applied for a specific job and the position has already been filled or if we feel you are equally suitable or more suitable for a different job, we will be happy to forward your application within the company. Please let us know if you do not consent to the forwarding of your details under these circumstances.
Your personal data will be deleted between 2 and 6 months following the completion of the application process unless you have expressly consented to longer-term storage of your data by us or unless a contract has been concluded. The legal basis for this is points (a), (b) and (f) of Article 6(1) GDPR and Section 26 of the German Federal Data Protection Act (BDSG).
This data will be used to set up, provide and personalise your account. The legal basis for is points (a), (b) and (f) of Article 6(1) GDPR.
7. Cookies – General information
To make our web pages attractive to visitors and to enable the use of certain features, we use “cookies” on various pages. Cookies are small text files that are placed on your end device. Some of the cookies we use are deleted at the end of the browser session, i.e. after you have closed the browser (these cookies are referred to as “session cookies”). Other cookies will remain on your end device and allow us or our affiliates to recognize your browser when you visit us again (these cookies are referred to as “permanent cookies”). Cookies do not allow us to access other files on your computer or identify your email address.
This website uses the cookies listed in the "Cookie information."
Personal data is only processed by cookies for marketing purposes or to create statistics if you have consented to this use. This processing operation is based on Art. 6 (1)(a) GDPR.
You can revoke your consent at any time without specifying any reasons using the following link by adjusting the features that are permitted.
Cookies are stored on your end device, and you have full control over their use. You can disable or restrict the transfer of cookies by changing the relevant settings of your internet browser. Any cookies already stored on your computer can be deleted at any time. This can also be done automatically. When cookies are disabled for our web pages, you may no longer be able to fully use all features of the web pages.
8. Data transmission
In principle, we will not transmit your data to any third party unless we are legally obliged to do so or unless the transmission of the data is necessary for the performance of the contract or you have expressly consented to the sharing of your data. This may explicitly be the case if your data needs to be shared with an external contractual partner within, but also outside of the EU/EEA for the purposes of initiating a contract.
The legal basis for the transmission of your data to a third country is your explicit consent, in accordance with point (a) of Article 49(1) GDPR, or the performance of a contract between you and us or the implementation of pre-contractual measures, in accordance with point (b) of Article 49(1) GDPR.
External service providers and partner companies, such as online payment service providers or the shipping company responsible for delivery will only receive your data to the extent that this is necessary for processing your order. In such cases, however, the scope of the data transmitted will be limited to the minimum necessary. Where our service providers have access to your personal data, we will ensure, in accordance with Article 28 GDPR, that these comply in a similar manner with the provisions set forth in the applicable data protection legislation. Please note the respective data protection notices of the providers. The respective service provider is responsible for the content of external services; however, we do inspect services with regard to compliance with legal requirements within reasonable bounds.
9. Data security
We have implemented technical and operational precautionary measures in order to protect your data against accidental or intentional manipulation, loss, destruction or unauthorised access. Our security processes are checked regularly and adapted to keep pace with technological progress.
Last updated: October 2020