Data privacy policy

Thank you for visiting our websites. The following information explains how we handle your data in accordance with Article 13 of the General Data Protection Regulation (GDPR).

The party responsible for the collection and processing of data is:

DH Mechatronic UK Ltd
Unit 10, Lawnhurst Trading Estate, Cheadle Heath, Stockport, Cheshire SK3 0SD  |  UK

Phone: +44 (0)161 491 4840

www.dh-partner.co.uk
webenquiry@dh-partner.co.uk

 

 

We save the IP address sent from your web browser for 7 days strictly for the purpose of detecting, limiting and combating attacks on our websites. After this period we erase/anonymise the IP address. The legal basis for this is Article 6 (1) (f) GDPR.

We have implemented technical and organisational measures to protect your data against unauthorised access to the greatest extent possible. We use an encryption procedure on our websites. Your information is transmitted from your computer to our server and back again over the internet using TLS encryption. This is evident from the lock icon in the status bar of your browser and from the address line which begins with https:// . 

Within the framework of commissioned data processing pursuant to Art. 28 of the GDPR, we forward your data to service providers who help us with operating our websites and the associated processes. These are, for example, hosting service providers. Our service providers are strictly bound by our instructions and are contractually obliged to comply with them.

Listed below are the processors with whom we collaborate, where these are not already specified in the Privacy Policy above. If data is to be transmitted outside of the EU or EEA within this framework, we provide information about the adequate level of data protection. 

Processors Purpose Adequate level of data protection
D+H Mechatronic AG Web hosting, website maintenance, tracking analysis Processing only within the EU/EEA

We use cookies that are strictly necessary to enable functionality on our websites. We also use cookies for analysis, tracking and advertising purposes. Cookies are small text files which are saved on your device and can be read. A distinction is made between session cookies, which are deleted as soon as you close your browser, and permanent cookies which are stored beyond a single session. Cookies can contain data which enable the device you use to be recognised when you next visit the website. Some cookies also only contain information about certain settings however which cannot be attributed to an individual. 

When you first visit our website, we will ask you to consent to our use of cookies for analysis, tracking and advertising purposes. If you have previously agreed to the use of these cookies, you can revoke your consent here over the Cookie settings.

The types of cookies we use on our websites are as follows:

Strictly necessary cookies 

This type of cookie enables a range of basic functions that ensure our website functions optimally. They also help us to keep our website display as user-friendly as possible. Without these strictly necessary cookies, our website cannot function properly.

Legal basis: In line with Art. 6 (1) (f) of the GDPR, our legitimate interest lies in using these cookies to optimise our website and ensure that it works without any technical errors.

Statistics cookies

These cookies allow us to analyse how visitors use our website. This information is anonymised. For example, we record which links people click on and how long they stay on each of the pages on our website.

Legal basis: According to Art. 6 (1) (a) of the GDPR, we have the right to process your data provided that you have given your consent to the use of these cookies (for example via our cookie banner). You can revoke this consent at any time over the Cookie settings.

Marketing Cookies

These cookies are used by third-party providers for the purpose of tracking visitors to our website. This enables us to show you relevant (advertising) content that will be of interest to you. This content is based on your past usage and surfing behaviour. Your activity can be tracked across different devices (mobile phone, tablet and PC).

Legal basis: According to Art. 6 (1) (a) of the GDPR, we have the right to process your data provided that you have given your consent to the use of these cookies (for example via our cookie banner). You can revoke this consent at any time over the Cookie settings.

You can use your browser settings to ensure that you are informed about any cookies placed on your computer, thus making the use of cookies transparent. You can delete cookies at any time in your browser settings and prevent the creation of new cookies. Please note that our websites may then not be optimally displayed and some features may no longer be available for technical reasons.

The GDPR grants website users certain rights regarding the processing of their personal data:

1. Right of access (Article 15 GDPR): You have the right to obtain confirmation as to whether or not personal data concerning yourself is being processed, and, where that is the case, to access the personal data and the information listed in Article 15 GDPR. 

2. You have the right to obtain without undue delay the rectification of inaccurate personal data concerning yourself and, if applicable, to have incomplete personal data completed. 

You also have the right to obtain the erasure of personal data concerning yourself without undue delay where one of the grounds listed in Article 17 GDPR applies, for example where the personal data is no longer necessary in relation to the purposes pursued. 

3. Right to restriction of processing (Article 18 GDPR): You have the right to obtain restriction of processing where one of the requirements listed in Article 18 GDPR applies, for example where you have objected to processing for the duration of a possible investigation. 

4. Right to data portability (Article 20 GDPR): In certain cases, which are listed in detail in Article 20 GDPR, you have the right to receive the personal data concerning yourself in a structured, commonly used and machine-readable format and to have this data transmitted to a third party.  

5. Right to object (Article 21 GDPR): Where data has been collected on the basis of Article 6 (1) (f) (data processing to protect legitimate interests), you have the right to object, on grounds relating to your particular situation, to processing at any time. We will no longer process the personal data unless there are demonstrable compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject, or where processing is necessary for the establishment, exercise or defence of legal claims.

6. Right to lodge a complaint with a supervisory authority: Pursuant to Article 77 GDPR, you have the right to lodge a complaint with a supervisory authority if you consider that the processing of your personal data infringes data protection law. The right to lodge a complaint with a supervisory authority may, in particular, be exercised in the member state of your habitual residence, place of work or place of the alleged infringement.

7. Contact details for data subject rights according to the GDPR:

D+H Mechatronic AG
Georg-Sasse-Straße 28–32
22949 Ammersbek
E-mail: dsgvo@dh-partner.com
Phone: +49 40 605 65 0

Insofar as we obtain the consent of the data subject for processing operations involving personal data, Art. 6 (1) a of the EU General Data Protection Regulation (GDPR) serves as the legal basis. When processing personal data that is necessary for the performance of a contract to which the data subject is a party, Art. 6 (1) (b) of the DSGVO serves as the legal basis. This also applies to processing operations that are necessary for the performance of pre-contractual measures. Insofar as the processing of personal data is necessary for the fulfilment of a legal obligation to which our company is subject, Art. 6 (1) c DSGVO serves as the legal basis. In the event that vital interests (of the data subject or another natural person) require the processing of personal data, Art. 6 (1) d) DSGVO serves as the legal basis. If the processing is necessary to protect a legitimate interest of our company or a third party and the interests, fundamental rights and freedoms of the data subject as well as the first-mentioned interest do not outweigh this, Art. 6 (1) lit. f DSGVO serves as the legal basis for the processing. For the remote maintenance gateway, the email address and a password are stored per person ("user") and are used for authentication in the system as well as password reset and email notification of device events, if configured. Device events are visible to the user for a maximum of 2 years. Each user is assigned to a company for the management of one or more devices. Company name, department, city, region/district/state and country details are stored.

Technically, Google can link the aliased features to your devices such as a tablet, smartphone and e-mail address (cross-device marketing). This requires you to have previously given Google your consent to this data processing. Google's targeted advertising campaigns can then be implemented across different devices.

Your data will be transferred to Google and saved in the USA. Google will use all of the information strictly for the specific purpose of evaluating the use of our website for us and compiling reports about website activities only.

On our websites, we embed map services that are not stored on our servers. To ensure that calling up our websites with embedded map services does not automatically lead to the content of the third-party provider being reloaded, we only display locally stored preview images of the maps in a first step. This does not provide the third-party provider with any information.

The content of the third-party provider is only reloaded after you click on the preview image. This provides the third-party provider with the information that you have accessed our site, as well as the technically necessary usage data in this context. We have no influence on the further data processing by the third-party provider. By clicking on the preview image, you give us your consent to the reloading of content from the third-party provider.

The embedding takes place on the basis of your consent, provided that you have previously given your consent by clicking on the preview image.

Please note that the embedding of some map services means that your data will be processed outside the EU or EEA (in particular in the US). If the data is processed outside the EU or EEA (in particular in the US) in this context, we provide information on the level of data protection in the table below.

 

Providers Adequate level of data protection Revocation of consent
Google For transfers to the U.S., an adequate level of data protection is ensured by the provider's certification under the adequacy decision (EU-U.S. Data Privacy Framework). If you have clicked on a preview image, the content of the third-party provider will be reloaded immediately. If you do not want such reloading on other pages, please do not click on the thumbnails any more.

This service is provided by: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, a subsidiary of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

So that we can design our website to meet your requirements better, we create aliased usage profiles with Google Analytics, a web analytics service. Google Analytics uses cookies which are saved on your device and can be read. In this way we are able to recognise returning visitors and classify them as such.

Within the scope of the Google Analytics service, Google Ireland Limited supports us as a processor in accordance with Art. 28 DSGVO. Data processing by Google may also take place outside the EU or the EEA (in particular in the USA). At Google, an adequate level of data protection is ensured on the basis of the adequacy decision (EU-U.S. Data Privacy Framework). Google also undertakes to conclude standard contractual clauses with further sub-processors.
The data processing is based on your consent, provided you have given this via our banner. You can revoke your consent at any time. To do so, please follow this link and make the appropriate settings via our banner: Cookie settings.

This website uses Google Ads. Ads is an online advertising platform provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

Conversion tracking is used as part of Google Ads. If you click on an ad displayed by Google, a conversion tracking cookie will be activated. These cookies are only valid for seven days and cannot be used to personally identify visitors to our website. If you visit certain pages of this website whilst the cookie is still valid, we and Google can see that you have clicked on an ad and been forwarded to the page in question.

Each Google Ads customer receives a different cookie. Cookies cannot be tracked via the websites of Ads customers. Information gleaned using conversion cookies can be used to generate conversion statistics for Ads customers that have opted into conversion tracking. Ads customers can find out the total number of users that have clicked on their advert and been forwarded to a page with a conversion tracking tag. They do not, however, receive any details that can be used to personally identify visitors. If you want to opt out of this tracking, you can object to this use by disabling the Google conversion tracking cookie via the user settings for your internet browser. If you do this, you will not be included as part of conversion tracking statistics.

Conversion cookies are stored on the basis of your consent in accordance with Art. 6 (1) (a) of the GDPR (for example via our cookie banner). As the website operator, we have a legitimate interest in analysing user behaviour for the purpose of optimising our website and our advertising.

You can read more about Google Ads and Google conversion tracking in Google’s privacy policy:
https://policies.google.com/privacy?hl=en

You can use your browser settings to ensure that you are informed about any cookies placed on your computer. You also have the option of only accepting cookies on a case-by-case basis or not accepting cookies at all or in certain cases. Another option is to update your settings so that cookies are automatically deleted whenever you close your browser. Remember that disabling cookies may impact negatively on the functionality of this website.

In all of the cases mentioned, this data processing is carried out by Google on the basis of your consent as per Art. 6 (1) 1. (a) of the GDPR, provided that you have given your consent through our banners.

Which third-party suppliers do we use within this framework?

Listed below are the third-party providers with whom we collaborate in connection with traffic analytics. If the data within this framework is processed outside of the EU or EEA, please note that there is a risk that the authorities may access the data for security and monitoring purposes without informing you of this and without you having a right to lodge an appeal. If we use providers in insecure third countries and you grant your consent, then data will be transmitted to a third country based on Art. 49 (1) (a) of the GDPR. You grant your consent via the cookie banner.

Google Retargeting

In order to offer advertising targeted to your interests where possible, even on other websites, we use retargeting technologies from Google in conjunction with cross-device features via Google Ads and Google DoubleClick. Data is processed on the basis of your consent in accordance with Art. 6 (1) (a) of the GDPR (for example via our cookie banner).

When you visit our websites and give your consent, recognition features of your browser or end device are accessed, your IP address is analysed or a recognition feature is saved on your device as a small text file (e.g. a so-called third-party cookie). Your user behaviour is recorded when you visit various websites. The features are stored with an alias. If you are logged in to your Google account these features may be directly linked to your profile. Google may link and save your visits to our websites to your features in order to show you targeted adver-tising on other websites. Similarly, Google can also detect your previous visits to our websites. Your device and browser are recognised by Google, for example when you access a page that shows advertising on behalf of Google.

Google Remarketing

We may tag our websites with keywords that contain statements about the content of the website, such as the products offered. Google receives these keywords which do not contain any personal or sensitive data. If you visit a page with specific keywords for products, this is saved by Google and linked to your aliased recognition features. Using this link, Google can recognise whether and, if applicable, which of our advertising you are shown.

Providers

Google Ireland Limited

 

 

Google LLC (USA)

Maximum duration of storage

24 Months

 

 

24 Months

Adequate level of data protection

Processing within the EU/EEA

 

 

For transfers to the U.S., an adequate level of data protection is ensured by the provider's certification under the adequacy decision (EU-U.S. Data Privacy Framework).

Withdrawal of consent

If you wish to withdraw your consent, please click here and configure the corresponding setting via our banner.

 

If you wish to withdraw your consent, please click here and configure the corresponding setting via our banner.

We use cross-device tracking technologies so that you can be shown targeted advertising on other websites based on your visit to our websites and so that we can see how effective our advertising efforts have been.

The data processing is based on your consent if you have given it via our banner. Your consent is voluntary and can be revoked at any time.

How does tracking work? 

When you visit our websites, it is possible that the third-party providers mentioned below retrieve identification features of your browser or terminal device (e.g. a so-called browser fingerprint), evaluate your IP address, store or read identification features on your terminal device (e.g. cookies) or gain access to individual tracking pixels.

The individual features may be used by the third-party providers to recognise your terminal device on other websites. We may instruct the relevant third-party providers to display advertising on our website based on the pages visited.

What does cross-device tracking mean?

If you log in to the third-party provider with your own user data, the respective recognition features of different browsers and end devices can be linked to each other. If, for example, the third-party provider has created its own feature for the laptop, desktop PC or smartphone or tablet you use, these individual features can be assigned to each other as soon as you use a service of the third-party provider with your access data. In this way, the third-party provider can also control our advertising campaigns across different end devices.

Which third-party providers do we use in this context?

Below we list the third-party providers with whom we work for advertising purposes. If the data is processed outside the EU or the EEA (especially in the USA), we provide information on the level of data protection in the following table.

Provider

Meta (Facebook, Instagram)

Adequate level of data protection

For transfers to the U.S., an adequate level of data protection is ensured due to the certification of the provider under the adequacy decision (EU-U.S. Data Privacy Framework).

Withdrawal of consent

If you wish to withdraw your consent, please click here and make the appropriate setting via our banner.

Please do not hesitate to contact our Data Protection Officer for more information or if you have any suggestions regarding data protection:

Jennifer Jähn-Nguyen
datenschutz nord GmbH
Web: www.datenschutz-nord-gruppe.de
E-mail: office@datenschutz-nord.de
Phone: 0421 69 66 32 0

You may contact us using the online contact form. If you use our contact form, we will ask you to supply your name, contact details and e-mail address. You may provide additional details or upload files, but this is not necessary. 

The legal grounds for processing is Article 6 (1) (f) GDPR. Your data will only be processed to answer your query or for customer service purposes and will not be stored on our servers.

The data will only be processed by employees of the D+H Group responsible for the performance of the contract. If required, personal data will be transmitted to companies participating in the performance of this contract. This includes subsidiaries of D+H and sales partners.

For data protection reasons we do not integrate any social plug-ins directly into our websites. If you access our websites your data will therefore not be transmitted to social media services such as Facebook, Twitter, XING or Google+. This also prevents third parties from building a profile.

Nevertheless you can still share selected web pages by clicking the Facebook, Twitter, XING and Google+ buttons. For this, we use the so-called Shariff solution developed by c’t magazine to offer an alternative to classic social plug-ins which complies with data protection law.

The developer of Shariff is GitHub, Inc., 88 Colin P. Kelly Junior Street, San Francisco, CA 94107, USA.

Please note that the use of third-party content and functions can lead to your data being processed outside of the EU or EEA. In some countries this means there is a risk that the authorities may access the data for security and monitoring purposes without informing you of this and without you having a right to lodge an appeal. If we use providers in insecure third countries and you grant your consent, then data will be transmitted to an insecure third country based on Art. 49 (1) (a) of the GDPR.  

You can find out more and read the up-to-date GitHub privacy policy here:
https://help.github.com/articles/github-privacy-policy/

How does this work? The Shariff solution means that, initially, all data and functions that would be required to show Facebook, Twitter, XING and Google+ buttons are provided by our web server. Data is only transferred to the operator of the respective social media service when you decide to share content via the corresponding button and click on it. 

Providers Adequate level of data protection Withdrawal of consent
Xing Processing within the EU/EEA If you have clicked the Shariff button, the content from the third-party provider will load immediately. If you do not want this type of loading on other pages, then please do not click the Shariff button.
LinkedIn No adequate level of data protection. Transmission occurs based on Art. 49 (1) (a) of the GDPR. If you have clicked the Shariff button, the content from the third-party provider will load immediately. If you do not want this type of loading on other pages, then please do not click the Shariff button.
YouTube For transfers to the U.S., an adequate level of data protection is ensured by the provider's certification under the adequacy decision (EU-U.S. Data Privacy Framework). If you have clicked the Shariff button, the content from the third-party provider will load immediately. If you do not want this type of loading on other pages, then please do not click the Shariff button.
Facebook For transfers to the U.S., an adequate level of data protection is ensured by the provider's certification under the adequacy decision (EU-U.S. Data Privacy Framework). If you have clicked the Shariff button, the content from the third-party provider will load immediately. If you do not want this type of loading on other pages, then please do not click the Shariff button.

We embed videos on our websites that are not stored on our servers. However, for reasons of data protection, no content from the third-party provider is loaded when you visit our website and the third-party provider does not receive any information.
Only when you give your consent via our banner will content from the third-party provider be loaded. As a result, the third-party provider receives the information that you have accessed our site as well as the usage data technically required in this context. In addition, the third-party provider is then able to implement tracking technologies. We have no influence on further data processing by the third-party provider. Your consent includes the reloading of content from the third-party provider. 
Embedding takes place on the basis of your consent, provided that you have given your consent via our banner. If the data is processed in this context outside the EU or the EEA (in particular in the USA), we provide information on the level of data protection in the following table.

 

Providers

Google (YouTube)

Adequate level of data protection

For transfers to the U.S., an adequate level of data protection is ensured due to the certification of the provider in accordance with the adequacy decision (EU-U.S. Data Privacy Framework).

Withdrawal of consent

If you wish to withdraw your consent, please click here and configure the corresponding setting via our banner.

We use the technical functions and content of third-party providers listed below to present our websites.
When you call up our pages, the content of the third-party provider that provides these functions and content is reloaded.

As a result, the third-party provider receives the information that you have accessed our site as well as the usage data that is technically necessary in this context.

We have no influence on the further data processing by the third-party provider. 
The data processing is based on your consent, provided that you have previously given your consent via our banner solution.    

Please note that the use of third-party content and functions may result in your data being processed outside the EU or the EEA (in particular in the USA). For transfers to the USA, an adequate level of data protection is ensured due to the adequacy decision (EU-U.S. Data Privacy Framework).

Providers

Google

Technical function or content

Google Tag Manager

Adequate level of data protection

For transfers to the U.S., an adequate level of data protection is ensured due to the certification of the provider in accordance with the adequacy decision (EU-U.S. Data Privacy Framework).

Withdrawal of consent

If you wish to withdraw your consent, please click here and configure the corresponding setting via our banner.

We only store and use your personal data provided when you submit a query in accordance with Article 6 (1) (b) GDPR to process your orders.

The data will only be processed by employees of the D+H Group responsible for the performance of the contract. If required, personal data will be transmitted to companies participating in the performance of this contract. This includes subsidiaries of D+H and sales partners.

You can change your personal data in your user account under “My data” or you can delete your account.

Personal data of the data subject is erased or blocked as soon as the purpose for storage no longer exists. Furthermore, storage is allowed if this is provided for by the European or national legislator in European Union legal orders, laws or other regulations to which the responsible entity is subject. Data is blocked or deleted even if a storage time prescribed by the specified standards expires, unless further storage of the data is required for a contract to be concluded or fulfilled.