Skip to content

Data privacy

DATA PRIVACY POLICY FOR THE USE OF OUR WEBSITES 

INFORMATION ON THE COLLECTION OF PERSONAL DATA 

(1) In the following, we inform you about the collection of personal data when using our website. Personal data is defined as all data that can be associated with you personally, e.g. name, address, e-mail addresses, user behavior. 

(2) The data controller as defined by Art. 4 par. 7 of the EU General Data Protection Regulation (GDPR) is RM Components GmbH, O'Brien-Straße 5, 91126 Schwabach, Germany, e-mail: info@rm-components.de. Please contact our DPO at dominik.gueneri@advizzr.net or through our postal address adding "FAO: Data Protection Officer". 

(3) If you contact us by e-mail, telephone, fax or via a contact form, the data you provide (your e-mail address, name and telephone number, if applicable) will be stored by us in order to respond to your request. We erase the data collected in this context when it is no longer necessary to store it (or restrict its processing if statutory retention obligations apply). 

(4) If we use subcontracted service providers for individual functions of our offer or if we wish to use your data for advertising purposes, we will inform you in detail about the respective procedures below. We will also state the defined criteria for the retention period. 

YOUR RIGHTS 

(1) You have the following rights in relation to your personal data: 

- right to information; 

- right to rectification or erasure; 

- right to restriction of processing; 

- right to object to processing; 

- right to data portability. 

(2) You also have the right to complain to a data protection supervisory authority about our processing of your personal data. 

COLLECTION OF PERSONAL DATA WHEN VISITING OUR WEBSITE 

(1) If you use our website merely for informational purposes, i.e. if you do not transmit information to us in any other way, we only collect the personal data that your browser transmits to our server. If you wish to view our website, we collect the following data, which is technically necessary for us to display our website to you and to ensure its stability and security (legal basis is Art. 6 par. 1 p. 1 lit. f GDPR): 

- IP address 

- date and time of access 

- time zone difference from Greenwich Mean Time (GMT) 

- requested content (specific page) 

- access status/HTTP status code 

- transferred data volume 

- originating website 

- browser 

- operating system and interface 

- language and version of the browser software. 

(2) In addition to the aforementioned data, cookies may be deposited on your device when you use our website - now or in the future. Cookies are small text files that are stored on your hard drive by your browser and which provide the party placing the cookie (in this case, us) with certain information. Cookies cannot execute programs or transfer viruses to your computer. They are used to make the website more user-friendly and effective overall (legal basis is Art. 6 par. 1 p. 1 lit. a GDPR). In principle, you may delete cookies at any time via the settings in your browser or block them in advance. 

In addition, we may - now or in the future - also use so-called local storage as well as session storage technology (also called "local data" and "local storage" as well as "session storage"). For local storage, data is stored locally in the cache of your browser, remains there and can be read even after you close the browser window or exit the program if you do not actively delete the cache. Local Storage facilitates the storage of your preferences when using our websites on your computer. The function of Session Storage corresponds to the Local Storage described, except that the corresponding data is automatically removed from your browser cache immediately after you shut down the browser ("end of session"). Third parties cannot access the data stored in Local Storage or Session Storage. It is not passed on to third parties and is not used for advertising purposes. In particular, this technology is used to present our content to you in user-friendly form (e.g. pop-up windows, etc.) and to personalize our offer and website navigation for you. You can manage the content of the local storage in the browser via the settings for "History" or "Local data", depending on which browser you use. If you deactivate the functions described, this may result in functional restrictions. 

(3) In principle, we use the techniques described above exclusively to improve the user-friendliness and functionality of our websites. We use these techniques in the legitimate interest of being able to provide you with an attractive, fully functional offer on the basis of Article 6 (1) (f) GDPR. If, in addition, consent to the use of cookies is required, we will request your consent where applicable. If we use cookies based on your consent, the legal basis shall be Art. 6 par. 1 p.1 lit. a GDPR. If you do not wish the techniques described above to be used, you can specify this individually in the settings of your respective browser. There you may also find a list of any cookies used. 

(4) Specific statement on cookies: 

a) This website may use the following types of cookies, the scope and functionality of which are explained below: 

- transient cookies (see b); 

- persistent cookies (see c). 

b) Transient cookies are automatically erased when you close the browser. These include, in particular, session cookies. They store a so-called session ID, with which various requests from your browser can be assigned to the joint session. This enables your computer to be recognized when you return to our website. The session cookies are deleted when you log out or close the browser. 

c) Persistent cookies are automatically erased after a predefined period of time, which may differ depending on the cookie. You can erase the cookies at any time in the security settings of your browser. 

d) You can configure your browser settings according to your preferences and, for example, refuse to accept third-party cookies or all cookies. Please note that you may not be able to use all the functions of this website in that case. 

OTHER FUNCTIONS AND OFFERS ON OUR WEBSITE 

(1) In addition to the merely informational use of our website, we may offer various services that you can use if interested. For this purpose, you will usually need to provide further personal data which we use to provide the respective service and to which the above data processing rules apply. 

(2) In some cases, we use third-party service providers to process your data. They have been carefully selected and are subcontracted by us, bound by our instructions and regularly monitored. 

(3) Furthermore, we may pass on your personal data to third parties if we offer promotion campaigns, prize draws, contract conclusions or similar services in cooperation with partners. You will receive further information on this when you provide your personal data or below in the description of the offer. 

(4) Insofar as our service providers or partners have their registered office in a state outside the European Economic Area (EEA), we will inform you on the consequences thereof in the description of the offer. 

OBJECTION TO OR WITHDRAWAL OF CONSENT TO THE PROCESSING OF YOUR DATA 

(1) If you have consented to the processing of your data, you may withdraw this consent at any time. Once communicated to us, such a withdrawal affects the permissibility of the processing of your personal data. 

(2) Insofar as we base the processing of your personal data on the weighing of interests, you can object to the processing. This is the case if the processing is not necessary, in particular, for the performance of a contract with you, which is detailed by us in each case in the following functional description. If you make use of such an objection, we will ask you to explain the reasons why we should not process your personal data as before. If your objection is justified, we will review the merits of the case and either cease or adapt the data processing or prove our compelling legitimate grounds on the basis of which we will continue the processing. 

(3) Of course, you can object to the processing of your personal data for the purposes of advertising and data analysis at any time. To do so, please contact us at: RM Components GmbH, O'Brien-Strasse 5, 91126 Schwabach, Germany, e-mail: info@rm-components.de. 

RETENTION PERIOD FOR PERSONAL DATA 

We store personal data in accordance with the statutory retention periods (e.g. retention periods under commercial and tax law). Thereafter, respective data is deleted if it is not required for the performance of the contract and/or there is no legitimate interest in storing it. 

SPECIAL FEATURES OF OUR WEBSITES 

NEWSLETTER 

(1) You may consent to subscribe to our newsletter, which serves to inform you about current interesting offers. The advertised goods and services are stated in the declaration of consent. 

(2) We use the so-called double-opt-in procedure to subscribe to our newsletter. This means that after you have signed up, we will send you an e-mail to the e-mail address you provided and ask you to confirm that you wish to receive the newsletter. If you do not confirm your subscription within 24 hours, your information will be blocked and automatically erased after one month. In addition, we store your IP addresses and the times of registration and confirmation. The purpose of this procedure is to be able to prove your subscription and, if necessary, to clarify a possible misuse of your personal data. 

(3) The only mandatory information required for receipt of the newsletter is your e-mail address. The provision of further, separately marked data is voluntary and will be used to address you personally. After your confirmation, we store your e-mail address for the purpose of sending you the newsletter. The legal basis is Art. 6 par. 1 p. 1 lit. a GDPR. 

(4) You can withdraw your consent to subscribe to our newsletter at any time and unsubscribe from it. You can declare the withdrawal by clicking on the link provided in every newsletter email, by email to info@rm-components.de or by sending a message to the contact details provided in the legal notice above. 

  

SOCIAL MEDIA AND THIRD PARTIES 

SOCIAL MEDIA 

(1) We currently use the following social media plug-ins and/or link to the following social media platform providers: Instagram, Xing. For plug-ins, we use the so-called two-click solution. This means that when you visit our site, no personal data is initially passed on to the providers of the plug-ins. You can identify the provider of the plug-in by the box marked with its initial letter or logo. We give you the opportunity to communicate directly with the provider of the plug-in via the button. Only if you click on the marked box and thereby activate it will the plug-in provider be informed that you have accessed the corresponding website through our website. In addition, the data mentioned in the section COLLECTION OF PERSONAL DATA WHEN VISITING OUR WEBSITE (paragraph 1) will then be transmitted. If only links to social media platform providers are set, the data mentioned in the section COLLECTION OF PERSONAL DATA WHEN VISITING OUR WEBSITE (paragraph 1) will only be transmitted to the provider after you click on the link. Since the plug-in provider collects the data in particular via cookies, we recommend that you delete all cookies via your browser's security settings before clicking on the greyed-out box. 

(2) We have no influence on the collected data and data processing procedures, nor are we aware of the full extent of the data collection, the purposes of the processing or the retention periods. We also have no information on the erasure of the collected data by the respective provider. 

(3) The plug-in provider stores your collected data as usage profiles and uses them for the purposes of advertising, market research and/or tailoring its website design to demand. Such evaluation is carried out in particular (also for users who are not logged in) for the display of individualized advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles and you must contact the respective plug-in provider to exercise this right. Via the plug-ins, we offer you the opportunity to interact with the social networks and other users so that we can improve our offer and make it more interesting for our users. The legal basis for the use of the plug-ins and the use of social media platforms, including links to them, is Art. 6 par. 1 p. 1 lit. f GDPR. If, in addition, consent to the use of cookies is required, we will request your consent at the appropriate point. If the use of cookies is based on your consent, the legal basis is Art. 6 par. 1 p. 1 lit. a GDPR. 

(4) The passing on of data when using social media plug-ins takes place regardless of whether you have an account with the plug-in provider and are logged in there. If you are logged in to the plug-in provider, the data we collect is directly assigned to your account with the plug-in provider. If you click the activated button and, for example, link to the page, the plug-in provider also saves this information in your user account and shares it publicly with your contacts. We recommend that you log out regularly after using a social network but especially before activating the button, as this will help you avoid being assigned to your profile with the plug-in provider. 

(5) Further details of the purpose and scope of the data collection and its processing by the provider can be found in the privacy policies of the providers below. There you will also find more information on your rights in this regard and on configuration options that help to protect your privacy. 

(6) Further information on the respective plug-in providers and URL with their privacy policies: 

According to Instagram, IP addresses are anonymized in Germany immediately upon collection. We cannot rule out the possibility that your personal data may be transmitted to the respective provider and stored there (in the case of US providers, in the USA). More details on the purpose and scope of the data collection and its processing by the provider can be found here: Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland, https://help.instagram.com/155833707900388, https://www.facebook.com/terms?ref=pf and http://www.facebook.com/policy.php. Facebook has joined the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework. Moreover, the FACEBOOK CONTRACT FOR THE TRANSMISSION OF EUROPEAN DATA (https://www.facebook.com/legal/EU_data_transf er_addenDum) is concluded with the provider by default. 

Xing AG, Gaensemarkt 43, 20354 Hamburg, DE; http://www.xing.com/privacy. 

RATING PORTALS 

(1) We use plug-ins from the following providers and link to our profile with the provider: 

- kununu 

For plug-ins, we use the so-called two-click solution. This means that when you visit our site, no personal data is initially passed on to the providers of the plug-ins. You can identify the provider of the plug-in by the box above marked with its initial letter or logo. We give you the opportunity to communicate directly with the provider of the plug-in via the button. Only if you click on the marked box and thereby activate it, the plug-in provider receives the information that you have called up the corresponding website through our website. In addition, in this case the data mentioned in the section COLLECTION OF PERSONAL DATA WHEN VISITING OUR WEBSITE (paragraph 1) will be transmitted. If links to social media platform providers are set, the data mentioned in the section COLLECTION OF PERSONAL DATA WHEN VISITING OUR WEBSITE (paragraph 1) will only be transmitted to the provider when you click on the link. Since the plug-in provider collects the data in particular via cookies, we recommend that you delete all cookies via your browser's security settings before clicking on the greyed-out box. 

(2) We have no influence on the collected data and data processing procedures, nor are we aware of the full extent of the data collection, the purposes of the processing or the retention periods. We also have no information on the deletion of the collected data by the respective provider. 

(3) The plug-in provider stores your data collected as usage profiles and uses it for the purposes of advertising, market research and/or tailoring the design of its website to demand. Such an evaluation is carried out in particular (also for users who are not logged in) to display individualized advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of such user profiles and you must contact the respective plug-in provider to exercise this right. Via the plug-ins, we offer you the opportunity to obtain information about our company or our offer independently, so that we can improve our offer and make it more interesting for our users. The legal basis for the use of the plug-ins and the use of rating platforms, including the link to these, is Art. 6 par. 1 p. 1 lit. f GDPR. If, in addition, consent to the use of cookies is required, we will request your consent at the appropriate point. If the use of cookies is based on your consent, the legal basis is Art. 6 par. 1 p. 1 lit. a GDPR. 

(4) The transfer of data when using plug-ins takes place regardless of whether you have an account with the plug-in provider and are logged in there. If you are logged in to the plug-in provider, your personal data collected by us will be directly assigned to your account with the plug-in provider. We recommend that you log out regularly after using a rating platform.  

(5) Further details on the purpose and scope of the collection of data and its processing by the provider can be found in the respective provider’s privacy policy below. There you will also find more information on your rights in this regard and configuration options that help to protect your privacy. 

(6) More information on the respective plug-in providers and URL with their data protection notices: 

Provider of kununu: New Work SE, Am Strandkai 1, 20457 Hamburg, Germany, Tel.: +49 40 419 131-0, Fax: +49 40 419 131-11, E-Mail: info@xing.com. The provider's privacy policy can be found at https://privacy.xing.com/de/datenschutzerklaerung. Further information on the provider can be found at https://www.kununu.com/de/info/impressum. 

DATA PRIVACY NOTICE FOR SPECIAL CATEGORIES OF PERSONAL DATA 

DATA PROTECTION INFORMATION FOR APPLICANTS 

(1) We process personal data of applicants exclusively for the purpose of the application process. The collection and storage as well as the processing and use of personal application data as defined by the General Data Protection Regulation (GDPR) is necessary to implement pre-contractual measures as well as to protect legitimate interests, in particular related to application processes. The legal basis is Art. 6 par. 1 p. 1 lit. b and lit. f GDPR. If applicants have given their consent, the legal basis is Art. 6 par. 1 p. 1 lit. a GDPR. There is no obligation to issue any consent and consent given can be withdrawn at any time - individually or as a whole - for the future. In this case, the data collected and stored on the basis of consent will be erased.  

(2) The applicants' data will be erased as soon as it is no longer needed for processing. This is the case when an application procedure has been completed, at the latest after 6 months. This does not apply if there is a legal obligation to retain data beyond this period or if consent has been given to store application data for a longer period. 

VIDEO SURVEILLANCE OF OUR COMPANY PREMISES 

The surveillance of our company premises as well as our warehouses is necessary for the fulfillment of our legitimate interests, in particular for exercising domiciliary rights, for the protection of life, health or freedom of persons staying there (cf. § 4 BDSG – Federal Data Protection Act) as well as for protection against burglary and theft. The legal basis is Art. 6 par. 1 p. 1 lit. f GDPR. 

CREDIT RATING INFORMATION FROM SCHUFA HOLDING AG 

Our company regularly checks your creditworthiness when concluding contracts and, in certain cases where there is a legitimate interest, also for existing customers. For this purpose, we cooperate with SCHUFA Holding AG, Kormoranweg 5, 65201 Wiesbaden, Germany, from whom we receive the data required for this. In this context, we transmit your name and contact details to SCHUFA Holding AG. The legal basis is Art. 6 Par. 1 p. 1 lit. b and f GDPR. The information regarding Art. 14 of the EU General Data Protection Regulation on data processing at SCHUFA Holding AG can be found here: https://www.schufa.de/global/datenschutz-dsgvo/.  

CREDIT RATING INFORMATION FROM CREDITREFORM BONIVERSUM GMBH 

Our company regularly checks creditworthiness when concluding contracts and, in certain cases where there is a legitimate interest, also for existing customers. For this purpose, we cooperate with Creditreform Boniversum GmbH, Hammfelddamm 13, 41460 Neuss, Germany, from whom we receive the data required for this. In this context, we transmit your name and contact details to Creditreform Boniversum GmbH. The legal basis is Art. 6 Para. 1 S. 1 lit. b and f GDPR. The information pursuant to Art. 14 of the EU Data Protection Regulation on data processing at Creditreform Boniversum GmbH can be found here: https://www.boniversum. de/eu-dsgvo/information- nach-eudsgvo-fuer-verbraucher/

CREDIT RATING INFORMATION FROM CRIF GMBH 

Our company regularly checks creditworthiness when concluding contracts and, in certain cases where there is a legitimate interest, also for existing customers. For this purpose, we cooperate with CRIF GmbH, Leopoldstr. 244, 80807 Munich, Germany, from which we receive the data required for this. In this context, we transmit your name and contact details to CRIF GmbH. The legal basis is Art. 6 par. 1 p. 1 lit. b and f GDPR. The information pursuant to Art. 14 of the EU General Data Protection Regulation on the data processing taking place at CRIF GmbH can be found here: https://crif.de/datenschutz/. 

DATA PRIVACY NOTICE PURSUANT TO ART. 13, 14 GDPR RELATED TO THE PROCESSING OF YOUR PERSONAL DATA OUTSIDE OUR WEBSITES 

Personal data is collected from the data subject themself. The further collection and storage as well as processing and use of this and other personal data pursuant to the General Data Protection Regulation (GDPR) is necessary to fulfill our statutory tasks and legal obligations as well as to protect legitimate interests, in particular with regard to a lasting customer relationship and direct advertising. The legal basis for the above-mentioned data processing is Article 6 (1b) and (1f) GDPR. The legal basis for processing based on consent is Article 6 (1a) GDPR. There is no obligation to give any consent and any consent given can be withdrawn at any time - individually or in total - for the future. Please send any such revocation to RM Components GmbH, O'Brien-Strasse 5, 91126 Schwabach, Germany, e-mail: info@rm-components.de. In this case, the data collected and stored on the basis of consent will be erased. You can request information about the processing of your personal data, demand that this data be corrected if it is incorrect, demand that it be erased if it has been stored inappropriately, and lodge a complaint with the supervisory authority. In addition, you have the right to object to the processing of your personal data at any time, provided that there are special reasons. In addition, you have the right to data portability according to Art. 20 GDPR. 

Please contact our DPO at dominik.gueneri@advizzr.net or our postal address stating “FAO: Data Protection Officer”. As a matter of principle, your data will be erased as soon as the purpose of its processing ceases to apply. This does not apply, in particular, if there are additional legal obligations to retain data. In some cases, we use third-party service providers to process your data. These have been carefully selected and are subcontracted by us, are bound by our instructions and are regularly monitored. Third parties in this respect may be: tax consultants, accounting offices, databases within the framework of our CRM system (customer management system), operators of our website and e-mail server/administrators, IT service providers (remote maintenance if necessary) as well as financial service providers (banks). Any disclosure of your data will be made exclusively on the basis of legal obligations to public bodies that require your data to fulfill their legal duties, or to natural or legal persons under private law who demonstrate a legitimate interest in the use of your data, or if express consent has been given, or to safeguard legitimate interests as defined by Art. 6 (1f) GDPR. 

  

If necessary, we offer our customers use of messenger services, such as WhatsApp (WhatsApp Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, e-mail: bd@whatsapp.com), when communicating with us. However, you have no right to communication via a specific messenger service. Of course, this service is voluntary and you can still contact us quickly by phone or e-mail. When using correspondence apps, e.g. via your smartphone, you may be asked by the provider for permission to use your address book, calendar, photos or memories. If you do not grant permission, the respective third-party provider will not use this data. In addition, offers from such providers often include so-called location-based services, with which special offers are made to you that are tailored to your respective location. You can only use these functions after you have agreed via a pop-up that the respective provider may collect your location data by means of GPS and your IP address in anonymized form for the purpose of providing the service. Furthermore, we assume that the messenger services we use collect, store and erase the data transmitted by you within the scope of the legal provisions. For further information on the purpose and scope of the data collection and its processing by the third-party provider, please refer to the provider's privacy policy. There you will also find further information on your respective rights and configuration options that help protecting your privacy, in the case of WhatsApp available at https://www.whatsapp.com/legal/#terms-of-service. We only use messenger services that provide an adequate level of protection. In the case of WhatsApp, your personal data is also processed in the USA, but WhatsApp has subscribed to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework. The legal basis for the use of the messenger services is Art. 6 par. 1 p. 1 lit. f GDPR. 

USE OF MICROSOFT TEAMS 

(1) We use the Microsoft Teams conferencing tool for the following purposes: video conferencing, online meetings, webinars and screen sharing. 

(2) Service Provider: Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland, Parent Company: Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399 USA. For further information on the provider's offer, please visit https://www.microsoft.com/de-de/micro soft-teams/group-chat-software. Further information on the purpose and scope of the collection of data and its processing by the provider can be found in the provider's privacy policy. There you will also find further details of your respective rights and configuration options that help to protect your privacy: https://privacy.microsoft.com/dede/ privacystatement. We cannot exclude the possibility that Microsoft Teams may also process your personal data in the USA and other third countries. Therefore, we have concluded the standard contractual clauses for customers that Microsoft Teams provides by default: https://www.microsoft.com/licensing/docs/view/Microsoft-Products-and-Services-Data-Protection-Addendum- DPA 

(3) The legal basis for the use of the provider is Art. 6 par. 1 lit. f GDPR. Our legitimate interest is in efficient and secure communication. If consent for data processing is required, we or the provider will request this from you in good time. The legal basis is then Art. 6 par. 1 lit. a GDPR. There is no obligation to give any consent and any consent given can be withdrawn at any time - individually or in total - for the future. In this case, the data collected and stored on the basis of consent will be erased.