The protection of any personal information collected, processed and used while you are visiting our social media sites is a matter of great importance to us. Your data is protected in line with legal requirements.
You can find this general data privacy statement here.
The Social Media Portal operators are joint Controllers with the following Controller in accordance with Art. 26 of the General Data Protection Regulation (hereinafter "GDPR"), other national data protection laws of the EU member states and Switzerland and other applicable data protection-related regulations ("applicable data protection legislation"):
EDAG Engineering Group AG
Tel.: +49 661 6000-0
Fax: +49 661 6000-223
1. Data processing through Social Networks
We maintain publicly accessible profiles in social networks. Social networks such as Facebook, Instagram, etc. are usually able to comprehensively analyse your user behaviour if you visit their website or a website with integrated social media content (e.g. Like buttons or advertising banners). Visiting our social media presences will trigger numerous data protection-relevant processing operations. Specifically, EDAG operates a social media site on the following platforms:
If you are logged on to your social media account and visit our social media site, the operator of the social media portal can assign this visit to your user account. Under certain circumstances, your personal data might be collected even though you are not logged on or do not have an account with the particular social media portal. In this case, your data is collected, for example, via cookies stored on your device or by recording your IP address.
With the help of the data collected in this way, the operators of the social media portals can create user profiles in which your preferences and interests are stored. In this way, interest-based advertising can be displayed to you both inside and outside of the social media portal. If you have an account with the social network, the interest-based advertisement can be displayed on all devices on which you are or have been logged on.
As a social media site operator, we can only view the information stored in your public profile, and this is only possible if you have such a profile and are logged on to it when you access our social media site. In addition, the operator of the social media portal provides us with anonymous usage statistics, which we use to improve the user experience for people visiting our social media site. We have no access to the usage data collected by the operator of the social media portal in order to create these statistics.
2. Purpose of and legal basis for the processing of personal data
Our social media sites are intended to ensure that our company has as comprehensive a presence as possible on the Internet. We use social media sites to draw attention to our services and products and to get in touch with you, both as a visitor to and user of these pages. The operation of these social media sites, including the processing of users' personal data, is based on our legitimate interests in a contemporary and supportive means of information and interaction for and with our users and visitors in accordance with Art. 6 para. 1 p. 1 point f of the GDPR and the analogous provisions pursuant to applicable data protection legislation.
If you use our profiles in social networks to contact us (e.g. by creating your own articles, reacting to one of our articles or sending us private messages), the data you provide us with will be processed by us for the sole purpose of contacting you. If you give your consent, the legal basis for data acquisition is Art. 6 para. 1 p. 1 point a of the GDPR, and otherwise Art. 6 para. 1 p. 1 point b of the GDPR in the case of performance of a contract and the analogous provisions pursuant to applicable data protection legislation.
The analysis processes initiated by the social networks may be based on different legal bases, which must be specified by the operators of the social networks (e.g. consent as defined in Art. 6 para. 1 p. 1 point a of the GDPR and the analogous provisions pursuant to applicable data protection legislation). Details and information can be found in the corresponding data protection regulations of the respective providers (see below).
3. Shared Responsibility and Exercising Rights
Please note that despite the fact that we share responsibility with the social media portal operators, we do not have full influence on the data processing procedures of the social media portals. The possibilities open to us depend largely on the corporate policy of the respective provider. Further details and information can be found in the corresponding data protection regulations of the respective providers (see below).
4. Data erasure and storage period
Any data collected directly by us via the social media site will be deleted from our systems as soon as the purpose for storing it no longer applies, or you request us to delete it or revoke your consent to store it. Any cookies stored remain on your end device until you delete them. Mandatory statutory provisions - in particular statutory retention periods - remain unaffected.
We have no influence on the storage period of any of your data which is stored by the operators of the social networks for their own purposes. For details, please contact the operators of the social networks directly (e.g. in their data privacy statement, see below).
We have a profile on Facebook. The provider is Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. Facebook has made a commitment to us that Facebook will assume responsibility under the GDPR for the processing of personal data, to fulfil all obligations arising from the GDPR and the analogous provisions pursuant to applicable data protection legislation with regard to this data, and to make the essence of this obligation available to the data subjects.
You can adjust your advertising settings yourself in your user account. To do this, click on the following link and log in:
Details can be found in the Facebook data privacy statement: https://www.facebook.com/about/privacy/update?ref=old_policy.
We use the Twitter short message service. The provider is Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA.
You can adjust your Twitter data protection settings yourself in your user account. To do this, click on the following link and log in:
Details can be found in the Twitter data privacy statement: https://twitter.com/de/privacy
As part of our corporate communications, we are present on YouTube, a service provided by the Google Group. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
For more details about YouTube's processing of personal data, please refer to Google's data protection directive, which is available at the following link: https://policies.google.com/privacy.
As a YouTube user, you can adjust your data protection settings yourself in your YouTube account. You can also set privacy and advertising preferences for Google services by following these links: https://myaccount.google.com/intro/privacy, https://adssettings.google.com/authenticated
We have a profile on Instagram. The provider is Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. For details on how they handle your personal information, please refer to Instagram's data privacy statement: https://help.instagram.com/519522125107875
5. XING / kununu
The latest data protection information on the XING share button and further information can be found on the website at:
https://dev.xing.com/plugins/share_button/privacy_policy and at https://www.kununu.com/de/info/datenschutz for kununu's additional data privacy statement.
We have a profile on LinkedIn. The provider is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland. LinkedIn uses advertising cookies.
In our LinkedIn activities, we use what are known as "lead gen forms", which can be used to request product information. We use the data you provide in the forms to process your request for information. This data is transmitted to us by LinkedIn. Our processing of this data is based solely on your consent (Art. 6 para. 1 point a of the GDPR). You may revoke such consent at any time by simply sending us an informal message by e-mail (social-media[at]edag.com). The legality of any data processing operations carried out up to the revocation shall remain unaffected by the revocation.
The data you have input will remain with us until you request us to delete it, revoke your consent to its storage, or the purpose for storing the data ceases to apply (e.g. after we have completed processing your enquiry). Mandatory statutory provisions - in particular statutory retention periods - shall remain unaffected.
Our website uses the "LinkedIn Insight Tag" conversion tool. The LinkedIn Insight tag makes it possible to collect information about visits to our Web site, including URL, referrer URL, IP address, device and browser properties, time stamps and page views. This data is encrypted, anonymised within seven days, and the anonymised data is deleted within 90 days. LinkedIn does not share any personal data with us; it only provides aggregated reports about the website's target group and display performance. LinkedIn also provides retargeting for visitors to the website, so that we can use this data to display targeted advertising outside of our website without the member being identified.
LinkedIn members can control the use of their personal data for advertising purposes in their account settings. To disable the Insight tag on our website ("opt-out"), click here: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.
For details on how they handle your personal information, please refer to LinkedIn's data privacy statement: https://www.linkedin.com/legal/privacy-policy.
If personal data concerning you is processed, you are the data subject as defined in the GDPR and the analogous provisions pursuant to applicable data protection legislation, and have the following rights against the data controller:
1. Right to be informed
Within the scope of Art. 15 of the GDPR and the analogous provisions pursuant to applicable data protection legislation, you are entitled to request information about your data that is being processed by us.
2. Right to rectification
If your personal data is incorrect or incomplete, you are entitled, within the scope of Art. 16 of the GDPR and the analogous provisions pursuant to applicable data protection legislation, to have any incorrect personal data concerning you to be rectified and/or to have incomplete personal data completed.
3. Right to restrict processing
Within the scope of Art. 18 of the GDPR and the analogous provisions pursuant to applicable data protection legislation, if the legal conditions are met, you may request that processing of your personal data be restricted.
4. Right to deletion
Within the scope of Art. 17 of the GDPR and the analogous provisions pursuant to applicable data protection legislation, you may at any time request that your personal data be deleted, provided we are not legally obliged or entitled to further process your data.
5. Right to data portability
Within the scope of Art. 20 of the GDPR and the analogous provisions pursuant to applicable data protection legislation, you have the right to receive the personal data concerning you with which you have provided us in a structured, commonly used and machine-readable format, and to transmit this date to another controller.
6. Right to object
Within the scope of Art. 21 of the GDPR and the analogous provisions pursuant to applicable data protection legislation, you have the right to object to the processing of your data for direct marketing or profiling purposes. You may object to processing on the basis of an assessment of interests, stating the reasons arising from your particular situation.
7. Right to withdraw declaration of consent under data protection law
You have the right to withdraw your declaration of consent to the processing of personal data at any time. The withdrawal of consent shall not affect the lawfulness of processing based on your consent before its withdrawal.
8. Right to lodge a complaint with a supervisory authority
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State or state of your habitual residence, place of work or place of the alleged infringement if you consider that the processing of personal data concerning you infringes the GDPR and the analogous provisions pursuant to applicable data protection legislation.
The supervisory authority with which the complaint has been lodged will inform the complainant on the progress and the outcome of the complaint including the possibility of a judicial remedy in accordance with Art. 78 of the GDPR and the analogous provisions pursuant to applicable data protection legislation.