Information on data processing for data subjects

Are you interested in the principles of data processing at our company?

Or have you accessed this page via a link because you want to find out how we handle (your) personal data? 

In order to fulfil our information obligations pursuant to Art. 12 et seq. General Data Protection Regulation (GDPR), we are pleased to provide you with our information about data protection below:

Who is responsible for data processing?

The controller within the meaning of data protection law is:

USG-Blexen GmbH
Am Hövel 12
49439 Steinfeld-Mühlen

You can contact us on +49 (0)5492 970 304 

Or by email at info@usg-blexen.de

What personal data do we process? And for what purposes?

If we have received data from you, we will only process it for the purposes for which we received or collected it.

Data processing for other purposes is only considered if the necessary legal requirements pursuant to Art. 6 (4) GDPR are met. In this case, we will of course comply with any obligations to provide information pursuant to Art. 13 (3) GDPR and Art. 14 (4) GDPR.

What is the legal basis for this?

The legal basis for the processing of personal data is generally Art. 6 GDPR, in the absence of specific legal provisions. The following options in particular can be considered here:

  • Consent (Art. 6 (1) a))
  • Processing for the performance of contracts (Art. 6 (1) b))
  • Processing for compliance with a legal obligation (Art. 6 (1) c))
  • Processing for the purposes of the legitimate interests pursued by the controller (Art. 6 (1) (f))

If we process personal data on the basis of your consent, you have the right to withdraw your consent at any time with effect for the future.

If we process data on the basis of a balancing of interests to protect our interests, you as the data subject have the right to object to the processing of personal data, taking the provisions of Art. 21 GDPR into account.

For how long will the data be stored?

We will process the data for as long as is necessary for the respective purpose.

If statutory retention obligations exist, e.g. in commercial law or tax law, the personal data concerned will be stored for the duration of the retention obligation. After the retention period has expired, we will check whether there is any further need for processing. If the data is no longer required, it will be deleted.

At the end of a calendar year, we review data to ascertain whether further processing is necessary. Because of the volume of data, this check is carried out with respect to specific data types or purposes of processing.

You can, of course, obtain access to the personal data we have stored about you at any time and, request the erasure of the data if it is not needed or a restriction of its processing (see below).

With which recipients will we share the data?

We will only share your personal data with third parties if this is necessary for the performance of the contract with you, if the transfer is permitted on the basis of a balancing of interests within the meaning of Article 6 (1) f) GDPR, if we are legally obligated to share the data or if you have given your consent to this.

Where is the data processed?

We will process your personal data exclusively on our own IT systems or the IT systems of our service providers from the Federal Republic of Germany.

Use of our website

The following information does not establish an entitlement with regard to the operation of a website by USG-Blexen GmbH or to the availability of such a website.

In principle, you can use our website without disclosing your identity.

Personal data will be collected from you and in some cases stored.

Data collection when visiting our web pages

If you use our web pages for information purposes only (i.e. if you do not register, conclude a contract with us or otherwise provide us with information), we will collect the personal data that your browser transmits to our servers. This is technically necessary for us to be able to display our web pages to you and to ensure the stability and security of the systems involved.

The following categories of data will be processed in this context:

  • the user’s IP address
  • the date and time of the request
  • the content of the request (which page is called up)
  • the access status/HTTP status code
  • the data volume transferred
  • the website from which the request comes
  • the user’s operating system
  • the language and version of the browser used.

This data will be temporarily stored in our system’s log files for a maximum of sixty days. Storage for a longer period is possible if the data is still required to resolve a technical problem or an attack on the systems involved.

We will not store the log files together with other personal data concerning you.

The legal basis for these processing operations is Art. 6 (1) f) GDPR.

The collection of website display data and the storage of this data in log files is absolutely essential for operating our web pages and maintaining IT security. In this respect, you have no option of opting out.

Use of cookies

When you use our web pages, cookies may be stored on your device during or after your visit to our website, in addition to the data described above. A cookie is a small text file that a website sends to the browser. It is stored locally and also sent back again. A cookie can store various pieces of information, which are read by the organisation that sets the cookie. They usually contain an ID (unique string of characters). This then makes it possible to identify your browser when you access the website again or switch to a different page.

This technology is primarily used to make our online services more user-friendly and effective overall. 

We use cookies on our website for technical reasons only (cookies that are required to operate the website).

Via the EU website http://www.youronlinechoices.com/ or the US website http://www.aboutads.info/choices/, you can opt out of advertising cookies for a large number of services. You can also configure your browser settings accordingly and thus refuse to accept third-party cookies or even all cookies. However, this may mean that you will no longer be able to access all the functions of our website.

The legal basis for the processing of personal data using cookies is Art. 6 (1) f) GDPR.

Contact form

We offer a contact form on our website. If you wish to use it, you must consent to us processing the data that you enter there; you cannot use the contact form without consenting to this. The legal basis is therefore Art. 6 (1) a) GDPR.

Our website host

We work with an external service provider (host) to operate our website. We have concluded a data processing agreement (DPA) with this company.

Our host is: ALL-INKL.COM – Neue Medien Münnich, owned by René Münnich, Hauptstrasse 68, 02742 Friedersdorf.

Visitors’ book

We are required to keep a visitors’ book for the mining part of our company. We use the external service provider EnterSmart GmbH, Joseph-Dollinger-Bogen 28, 80807 Munich for our visitors’ book.

The legal basis for the processing of personal data is Art. 6 (1) c) GDPR (legal obligation).

Your rights as a “data subject”

You have the right to access the personal data that we process concerning you.

Please note that we may require you to provide proof that you are the person you claim to be when requesting such access.

You also have the right to rectification or erasure or to a restriction of processing, insofar as you are legally entitled to these rights.

You also have the right to object to the processing within the framework of the statutory requirements. The same applies to the right to data portability.

In particular, you have the right to object to the processing of your data in connection with direct advertising in accordance with Art. 21 (1) and (2) GDPR if this is based on a balancing of interests.

Our data protection officer

Our company has appointed a data protection officer. Contact details:

Dr Thomas Gudehus
mfcd: Manufaktur für cleveren Datenschutz GmbH
Lübecker Strasse 14
34225 Baunatal

Email: dsb-usg-blexen@mfcd.de

Telephone: +49 (0)5601 961 57 65

Right to lodge a complaint

You have the right to lodge a complaint with a data protection authority about how we process your personal data.

The supervisory authority responsible for our company is:

The State Commissioner for Data Protection of Lower Saxony
Prinzenstrasse 5
30159 Hanover

Telephone: +49 (0)511 120-4500, email: poststelle@lfd.niedersachsen.de

You can find further information and a contact form on the supervisory authority’s website:
https://lfd.niedersachsen.de