Data protection declaration

1. Data protection at a glance

General information

The protection of your personal data is of the utmost importance to our company. The processing of this data by us takes place strictly in accordance with the data protection laws. These are the European General Data Protection Regulation (GDPR), the German Federal Data Protection Act (BDSG) and other legal regulations. In accordance with the GDPR, we are obliged to provide you with the following information concerning the processing of your data.

Data recording on our website

Who is responsible for the data recording on this website?
The data processing on this website is carried out by the website operator.
You can find the contact details of the website operator in the legal notice of this website.

How do we record your data?

On the one hand, your data is gathered when you notify us of this, for example by email or in the course of the performance of your orders.

Other data is automatically recorded by our IT systems when you visit the website. This is primarily technical data (for example Internet browser, operating system or time the site was accessed). The recording of this data takes place automatically when you visit our website.

What do we use your data for?

When you send comments to us:
You can send comments to us at any time. You can do this by telephone, letter, email, fax or personally. When you send us data during this process, the following applies:
Personal data: Information which you provide to us voluntarily.
Purpose of the processing: Dealing with your comment
Legal basis: Article 6 Paragraph 1 Letter a) GDPR
Data recipients:
– Company management and internal departments
– Bodies to which we forward your data on your request
Retention period:
Once the processing is complete, the data is archived. The data in the archive is deleted after 10 years.

Business partners (customers, suppliers, service providers):
Most of our service partners nominate one of their employees to Saalemühle Alsleben GmbH and Dresdener Mühle as a point of contact. The contact data of these points of contact is processed by us as follows:
Personal data:
– Name
– Company name and address
– Function, role
– Telephone number, fax number
– Email address
Purpose of the processing: Agreements in relation to engaged services / deliveries
Legal basis: Article 6 Paragraph 1 Letter f) GDPR
Origin of the data:
– Notification by the point of contact himself / herself
– Notification by another contact person of the service provider / supplier
Data recipients:
– Company management and internal departments

Retention period:
Once the order has been completed, the data is archived. The data in the archive is deleted after 10 years. There is no obligation to transmit this data. The processing is not absolutely necessary for the service / delivery. However, without designated points of contact, the time and expense of concluding agreements would be disproportionately high. In addition, there would be a serious risk of misunderstandings. Therefore, there is a legitimate interest in this processing.

Job applicants:
You are welcome to send us your application by email.
When you apply to us, we process the following data belonging to you:
Personal data: Data which you send together with the application
Purpose of the processing: Deciding the outcome of the application
Legal basis:
– Article 88 GDPR and §26 BDSG
– Article 6 Paragraph 1 Letter a) GDPR (consent to longer retention of the documents)
Data recipients:
– Company management and internal departments
Retention period:
– In case of appointment: 10 years following the end of your employment with us
– In case of rejection: 3 months following the rejection (unless you agree to longer retention period)
The processing of the data is necessary in order to assess the application. It is not possible to enter into an employment contract without this data being provided.

During this process, we observe the principles of data economy and data minimisation. Only the data which is necessary in order to perform our business relationship is processed. The data is not used for other purposes and is not made accessible to others for different types of use.

We wish to point out that we will continue to save data of the type described above in the future, as this is absolutely necessary in order to carry out our business processes.

Data which we no longer require and where no statutory requirements or obligations under commercial law to continue to retain this exist will be destroyed by us in accordance with data protection laws.

What right do you have in relation to your data?

You have the following rights in relation to this processing of your personal data:
– Information concerning the data relating to your person which is being saved (Article 15 GDPR)
– Rectification of incorrect data (Article 16 GDPR)
– Erasure, should this be legally permitted (Article 17 GDPR)
– Restriction of the processing (Article 18 GDPR)
– Receipt of your data in a current, up-to-date and machine readable format (Article 20 GDPR)
– Objection to the processing (Article 21 GDPR)
– Complaint to a supervisory authority (Article 77 GDPR)
Any processing is based on your consent (for example for the processing of a request, the retention of job applications for longer than 3 months).
In these cases, you have the right to revoke your consent at any time with effect for the future.

Analysis tools and tools of third party providers

When visiting our website, your surfing behaviour may be statistically analysed. This is done primarily with cookies and so-called analysis programs. The analysis of your surfing behaviour is usually anonymous. You can prevent the statistical analysis by making settings in your browser. You will find detailed information on this in the following data protection declaration.
You can object to this analysis. We will inform you about the possibilities of objection in this data protection declaration.

2. General notice and mandatory information

Data protection concept

We take the protection of your personal data extremely seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations, as well as this data protection declaration.

Your personal data is only saved and used by us in order to communicate with you and carry out the business transaction with you. During this process, we observe the principles of data economy and data minimisation. The data is not used for other purposes and is not made accessible to others for different types of use.

Your data is protected by us against external and unauthorised access in the course of our technical and organisational measures. We use suitable technical and organisational security measures in order to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorised third party access. Our security measures are constantly improved in accordance with technical developments.

We wish to point out that data transfer via the Internet (for example email communication) can represent security risks. It is not possible to fully protect the data against third party access.

Information concerning the controller

The controller for the data processing on this website is:
Patrick Bindewald (CEO)
CORNEXO GmbH
Altdorfer Straße 6
D-67482 Freimersheim
Telefon: +49 6347 98216-0
E-Mail: info@cornexo.de

Revocation of your consent to data processing

Certain data processing procedures are only possible with your express consent. You can revoke consent which has already been issued at any time. The sending of an informal email to us suffices for this purpose. The lawfulness of the data processing which took place prior to the revocation remains unaffected by this.

SSL and TLS encryption

For security reasons and in order to safeguard the transfer of confidential content, for example orders or queries which you send to us as the site operator, this website uses SSL and/or TLS encryption. You can recognise an encrypted connection by the address line of the browser changing from “http://” to “https://” and from the lock symbol in your browser line.

Should SSL and/or TLS encryption be activated, the data which you send to us cannot be read by third parties.

Information, blocking, erasure

Within the framework of the applicable statutory provisions, you have the right at any time to free-of-charge information concerning the personal data saved in relation to you, its origin and recipients and the purpose of the data processing and, if applicable, a right of rectification, blocking or erasure of the said data within a reasonable period of time. In this respect and should you have any other queries concerning data protection, you can get in touch with us via the address provided in the legal notice.

Objecting to advertising emails

The use of contact data published in the mandatory legal notice for the sending of advertising and information materials which have not been expressly requested is hereby being expressly objected to. The operators of the website expressly reserve the right to take legal action in case of the unsolicited sending of advertising information, for example by means of spam emails.

3. Data recording on our website

Cookies

The Internet pages partly use so-called cookies. Cookies do not cause any damage to your computer and do not contain viruses. Cookies serve to make our offer more user-friendly, more effective and safer. Cookies are small text files that are stored on your computer and saved by your browser.
Most of the cookies we use are so-called “session cookies”. They are automatically deleted after the end of your visit. Other cookies remain stored on your terminal device until you delete them. These cookies allow us to recognize your browser on your next visit.
You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when closing the browser. If cookies are deactivated, the functionality of this website may be limited.
Cookies that are required to carry out the electronic communication process or to provide certain functions that you have requested (e.g. shopping cart function) are stored on the basis of Art. 6 (1) lit. f DSGVO. The website operator has a legitimate interest in storing cookies for the technically error-free and optimized provision of its services. Insofar as other cookies (e.g. cookies for the analysis of your surfing behavior) are stored, these are treated separately in this privacy policy.

Server logfiles

The provider of the sites automatically gathers and saves information in so-called server logfiles which your browser transfers to us automatically. This information includes:

browser type and version
operating system used
referrer URL
host name of the accessing computer
time of the server request
IP address
This data is not combined with other data sources.

The basis for the data processing is Article 6 Paragraph 1 Letter b) GDPR, which permits the processing of data in order to fulfil a contract or pre-contractual measures.

Contact form

Should you send us queries via the contact form, the information which you provide in the contact form, including your contact data which you provide, will be saved by us for the purpose of processing the matter as well as in case of any follow up queries. We do not pass this information on without your consent.

You can revoke consent at any time. The sending of an informal email to us suffices for this purpose. The lawfulness of the data processing procedures which took place prior to the revocation remains unaffected by this.

4. Newsletter

Newsletter data

If you would like to receive the newsletter offered on the website, we require an e-mail address from you as well as information that allows us to verify that you are the owner of the e-mail address provided and that you agree to receive the newsletter. No further data is collected, or only on a voluntary basis. We use the newsletter service providers described below to process the newsletter.

CleverReach

This website uses CleverReach to send newsletters. The provider is CleverReach GmbH & Co. KG, Schafjückenweg 2, 26180 Rastede, Germany (hereinafter: “CleverReach”). CleverReach is a service with which the newsletter dispatch can be organized and analyzed. The data you enter for the purpose of receiving the newsletter (e.g. e-mail address) is stored on CleverReach’s servers in Germany or Ireland.

Our newsletters sent with CleverReach enable us to analyze the behavior of newsletter recipients. Among other things, we can analyze how many recipients have opened the newsletter message and how often which link in the newsletter was clicked on. Conversion tracking can also be used to analyze whether a predefined action (e.g. purchase of a product on this website) has taken place after clicking on the link in the newsletter. Further information on data analysis by CleverReach newsletters can be found at: https://www.cleverreach.com/de/funktionen/reporting-und-tracking/.

The data processing takes place on the basis of your consent (Art. 6 para. 1 lit. a GDPR). You can revoke this consent at any time by unsubscribing from the newsletter. The legality of the data processing operations that have already taken place remains unaffected by the revocation.

If you do not want CleverReach to analyze your data, you must unsubscribe from the newsletter. We provide a corresponding link for this purpose in every newsletter message.

The data you provide us with for the purpose of subscribing to the newsletter will be stored by us or the newsletter service provider until you unsubscribe from the newsletter and deleted from the newsletter distribution list after you unsubscribe from the newsletter. Data stored by us for other purposes remains unaffected by this.

After you unsubscribe from the newsletter distribution list, your e-mail address may be stored by us or the newsletter service provider in a blacklist to prevent future mailings. The data from the blacklist will only be used for this purpose and will not be merged with other data. This serves both your interest and our interest in complying with the legal requirements when sending newsletters (legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR). Storage in the blacklist is not limited in time. You can object to the storage if your interests outweigh our legitimate interest.

For more information, please refer to CleverReach’s privacy policy at: https://www.cleverreach.com/de/datenschutz/.