elanders Print & Packaging Logo
Bildmarke von elanders Print & Packaging

Privacy policy

We take the protection of your personal data seriously and would like to inform you here about data protection in our company. This privacy policy explains how your personal data is processed within the scope of our online services.

A. General Information

I. Controllers and Data Protection Officers

The controllers within the meaning of Art. 4 (7) of the General Data Protection Regulation (GDPR) are:

Elanders Kaisheim GmbH

Gewerbepark 5
86687 Kaisheim
Germany
Tel.: +49 9099 9695-0
E-mail: info@elanders-kaisheim.com

Data Protection Officer: reachable at dsb@elanders-kaisheim.com or by post at the above address, with the addition “To the Data Protection Officer”.

Elanders Waiblingen GmbH

Anton-Schmidt-Str. 15
71332 Waiblingen
Germany
Tel.: +49 7151 9563-0
E-mail: info.germany@elanders.com

Data Protection Officer: reachable at datenschutz@elanders-germany.com or by post at the above address, with the addition “To the Data Protection Officer”.

Elanders Donauwörth GmbH

Am Stillflecken 4
86609 Donauwörth
Germany
Tel.: +49 906 70634–0
E-mail: donauwoerth@elanders.com

Data Protection Officer: reachable at datenschutz@schaetzl.com or by post at the above address, with the addition “To the Data Protection Officer”.

II. Categories of Processed Data

When visiting and using our online services, personal data is processed. Personal data means all data that can be related to you personally, such as name, address, e-mail address.

If you provide us with personal data, we store and use this data in accordance with statutory provisions – for example, to fulfil contracts, respond to inquiries, or take steps prior to entering into a contract.

In addition, when visiting our website, usage data (e.g. access times, pages visited) and metadata (e.g. IP addresses, information about the operating system and internet service provider) may also be processed.

III. Legal Basis for the Processing of Personal Data

Your data is only processed if one of the legal bases listed in Art. 6 (1) GDPR applies, in particular:

  • with your consent (Art. 6 (1) (a) GDPR),
  • for the performance of a contract or in order to take steps prior to entering into a contract (Art. 6 (1) (b) GDPR),
  • to comply with a legal obligation (Art. 6 (1) (c) GDPR),
  • to safeguard our legitimate interests or those of a third party (Art. 6 (1) (f) GDPR), unless your interests, fundamental rights, or freedoms override those interests.

The specific legal basis applicable to each processing activity is explained in this privacy policy in the relevant sections. A processing activity may also be based on multiple legal grounds.

IV. Disclosure of Data and Transfers to Other Countries

Disclosure to Processors and Third Parties

If, in the course of processing, we disclose data to other persons and companies (processors or third parties), transmit it to them, or otherwise grant them access to the data, this is done only on the basis of a legal permission – in particular:

  • if you have expressly consented,
  • if such transfer is required for contract performance or pre-contractual measures (Art. 6 (1) (b) GDPR),
  • if a legal obligation exists (Art. 6 (1) (c) GDPR),
  • if disclosure is necessary to safeguard our legitimate interests (e.g. use of contractors, web hosting), or
  • if it is required to assert, exercise or defend legal claims and there is no reason to assume that you have an overriding interest in the non-disclosure of your data.

If we commission third parties to process data on the basis of a so-called “data processing agreement”, this is done in accordance with Art. 28 GDPR.

Transfers to Third Countries

If data is processed lawfully in a third country (outside the European Union (EU) or the European Economic Area (EEA)), or if this occurs in the context of using third-party services or disclosing/transferring data to third parties, this is only carried out if the special conditions of Art. 44 et seq. GDPR are met.

Processing is based in particular on special safeguards such as the official recognition of an EU-equivalent level of data protection or the use of EU Standard Contractual Clauses.

V. Rights of Data Subjects

If personal data concerning you is processed, you have the following rights under the GDPR:

  • Right of access (Art. 15 GDPR)
  • Right to rectification (Art. 16 GDPR)
  • Right to erasure (Art. 17 GDPR)
  • Right to restriction of processing (Art. 18 GDPR)
  • Right to data portability (Art. 20 GDPR)
  • Right to object to processing (Art. 21 GDPR)

Without prejudice to any other administrative or judicial remedy, you also have the right to lodge a complaint with a supervisory authority pursuant to Art. 77 GDPR, in particular in the Member State of your habitual residence, place of work, or place of the alleged infringement, if you believe that the processing of personal data concerning you infringes the GDPR.

A list of supervisory authorities can be found at: https://www.bfdi.bund.de/DE/Service/Anschriften/Laender/Laender-node.html

VI. Right to Withdraw Consent and Right to Object

Right to Object to Processing

You have the right, on grounds relating to your particular situation, to object at any time to the processing of personal data concerning you carried out on the basis of Art. 6 (1) (e) or (f) GDPR (Art. 21 GDPR). This applies in particular where processing is not required for the performance of a contract with you.

If you object, please state your reasons why we should not process your personal data as carried out. In the event of a justified objection, we will review the situation and either stop or adapt the processing, or demonstrate compelling legitimate grounds for the continuation of processing that override your interests, rights, and freedoms, or that serve the establishment, exercise, or defence of legal claims.

If personal data is processed for direct marketing purposes, you have the right to object at any time to the processing of your personal data for such marketing. If you object to processing for direct marketing purposes, your personal data will no longer be processed for these purposes.

Right to Withdraw Consent

You have the right to withdraw your consent to data processing at any time. The withdrawal does not affect the lawfulness of processing based on consent before its withdrawal.

You may inform us of your objection or withdrawal using the contact details provided above.

VII. Data Deletion and Storage Duration

Unless otherwise expressly stated in this privacy policy, data stored by us is deleted as soon as it is no longer required for its intended purpose and there are no statutory retention obligations preventing deletion.

For example, data required to be retained for commercial or tax law reasons must be kept for up to 10 years under German law.

VIII. SSL or TLS Encryption

For security reasons and to protect the transmission of confidential content (such as orders or inquiries you send to us as the site operator), this site uses SSL or TLS encryption.

You can recognise an encrypted connection by the fact that the browser’s address bar changes from “http://” to “https://” and by the lock symbol in your browser bar.

When SSL or TLS encryption is activated, data you transmit to us cannot be read by third parties.