Legal topics

Privacy Policy

A comprehensive guide on how we protect the data from our customers and guarantee the best user experience.
Data Protection Officer
Jason Komninos
Last Updated
June 2024
Design & Web-Development:
Avorice Freiburg - www.avorice.de

Data protection information of ZAHORANSKY AG

Thank you for visiting our website and for your interest in our company and our products. We want you to feel secure when you visit our website. Protecting your privacy when processing personal data is important to us. Below you will find out how we guarantee this protection and which data is collected for which purposes.

  1. 1. Name and address of the person responsible

The controller within the meaning of the General Data Protection Regulation (GDPR) is the:

ZAHORANSKY AG
Anton-Zahoransky-Strasse 1
79674 Todtnau-Geschwend
Germany

Phone: (+49) 7671 997 0
Fax: (+49) 7671 997 299
E-mail: info@zahoransky.com

  1. 2. Name and address of the data protection officer

The data protection officer of the controller is:

Jason Komninos
BEITEN BURKHARDT Services GmbH
Ganghoferstrasse 33
80339 Munich
E-Mail: datenschutz@zahoransky.com

  1. 3. General information on the collection, disclosure and storage period of personal data
    1. 3.1. We process your personal data in compliance with the provisions of the GDPR, the German Federal Data Protection Act (BDSG) and all other relevant laws.
    2. 3.2. The primary purpose of data processing is to establish and fulfill a contractual relationship with you. When you contact us by e-mail, via a contact form or by telephone, the data you provide (your e-mail address, your name and telephone number if applicable) will be stored by us in order to answer your questions. The primary legal basis for this is Art. 6 para. 1 lit. b) GDPR. In addition, your separate consent pursuant to Art. 6 para. 1 lit. a), 7 GDPR may be used as a data protection law permission regulation. We also process your data in order to be able to fulfill our legal obligations, in particular in the area of commercial and tax law. This is done on the basis of Art. 6 para. 1 lit. c) GDPR. If necessary, we also process your data on the basis of Art. 6 para. 1 lit. f) GDPR in order to protect our legitimate interests or those of third parties.
    3. 3.3. Your personal data will only be passed on to third parties without your express consent - unless otherwise stated elsewhere in this privacy policy - if this is necessary for the provision of our services. These are in particular technical service providers that we need to provide the website or its functionalities and have commissioned accordingly. The service providers process this data exclusively on our behalf in accordance with our instructions and we have concluded corresponding contracts with these service providers for order processing in accordance with Art. 28 GDPR. Of course, before passing on your personal data, we ensure that the service providers have taken the necessary technical and organizational measures to ensure an appropriate level of protection. The scope of the data transfer is limited to the minimum necessary in each case.
    4. 3.4. As part of our business relationships, your personal data may be passed on or disclosed to third-party companies. These may also be located outside the European Economic Area (EEA), i.e. in third countries. Such processing takes place exclusively for the fulfillment of contractual and business obligations and for our legitimate interests (legal basis is Art. 6 para. 1 lit. b) or lit. f) in each case in conjunction with Art. 44 ff. GDPR), in individual cases also on the basis of your consent (legal basis is Art. 6 para. 1 lit. a) in conjunction with Art. 44 ff. GDPR). We will inform you about the respective details of the transfer at the relevant points below.
    5. 3.5. We delete your personal data as soon as it is no longer required for the purposes for which it was collected. After termination of the contractual relationship, your personal data will be stored for as long as we are legally obliged to do so. This regularly results from legal obligations to provide evidence and retain data, which are regulated in the German Commercial Code and the German Fiscal Code, among others. The storage periods are up to ten years. In addition, personal data may be stored for the period during which claims can be asserted against us (statutory limitation period of three or up to thirty years).
  2. 4. Processing of personal data when visiting our website
    1. 4.1. If you only use the website for informational purposes, i.e. if you do not register or otherwise provide us with information, we only collect the personal data that your browser transmits to our server. If you wish to view our website, we collect data that is technically necessary for us to display our website to you and to ensure stability and security. The data is also stored in the log files of our system. This data is not stored together with other personal data of the user. This data includes the IP address of the requesting device, date and time of the request, time zone difference to Greenwich Mean Time (GMT), content of the request (specific page), access status/HTTP status code, amount of data transferred in each case, website from which the request originates, browser, operating system and its interface as well as the language and version of the browser software.
    2. 4.2. The legal basis for the temporary storage of data and log files is Article 6(1)(f) GDPR. The temporary storage of the IP address by the system is necessary to enable the website to be delivered to your browser. For this purpose, your IP address must remain stored for the duration of the session. The data is stored in log files to ensure the functionality of the website. In addition, we use the data to optimize the website and to ensure the security of our information technology systems. These purposes also constitute our legitimate interest in data processing. The data is not analyzed for marketing purposes in this context.
    3. 4.3. The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. In the case of the collection of data for the provision of the website, this is the case when the respective session has ended. Log files are deleted within 14 days after accessing the website .
  3. 5. Use of cookies
    1. 5.1. Cookies are used on our website. These are small text files that are stored on your end device when you visit our website, provided that the browser settings on your end device allow this. Information is stored in the cookie that results in each case in connection with the specific end device used. We distinguish between cookies that are absolutely necessary for the technical functions of the online offer and cookies that are used for statistical evaluation to improve the functionality of our website and its adaptation to user behavior.
    2. 5.2. Technically necessary cookies
    3. By technically necessary cookies, we mean cookies without which the technical provision of the online offer cannot be guaranteed. These are used, for example, to control the connection during an online session (so-called session cookies). These cookies are deleted as soon as the browser session is ended. The data processing carried out on the basis of technically necessary cookies is necessary for the purposes mentioned to safeguard our legitimate interests in accordance with Art. 6 para. 1 lit. f) GDPR. The legal basis for the use of technically necessary cookies or similar technologies on your end device is Section 25 (2) No. 2 TDDDG.
    4. 5.3. Functional cookies
    5. We only set various cookies with your consent, which you can select via the cookie consent tool ("cookie banner") on your first visit to our website. The functions are only activated with your consent and are used in particular to analyze and improve visits to our website, to make it easier for you to use different browsers or end devices, to recognize you during a visit or to integrate videos on our website. The legal basis for this data processing is your consent in accordance with Art. 6 para. 1 lit. a) GDPR. The legal basis for the use of functional cookies or similar technologies on your end device is your consent in accordance with Section 25 (1) TDDDG. You can revoke your consent at any time via the cookie banner without affecting the permissibility of data processing until revocation.
    6. 5.4. If you do not want cookies to be stored on your end device or if you always want a message to appear before a new cookie is created, you can configure your browser accordingly. However, completely deactivating cookies may mean that you cannot use all the functions of our website.
    7. 5.5. Our website uses a cookie banner to obtain your consent to the storage of cookies in your browser and to document this in accordance with data protection regulations. The provider is Usercentrics A/S, Havnegade 39, 1058 Copenhagen, Denmark (hereinafter referred to as "Cookiebot"). When you visit our website, a cookie is stored in your browser in which the consents you have given or the revocation of these consents are stored. The storage period of the cookie can be found in the cookie banner. The data collected will be stored for the lifetime of the cookie until you ask us to delete it or delete the cookie yourself. Mandatory statutory retention periods remain unaffected. We have concluded an order processing contract with Cookiebot so that any personal data collected via our website is processed exclusively on our behalf and in accordance with our instructions. The cookie banner on our website is used to obtain the legally required consent for the use of cookies. The legal basis for this is Art. 6 para. 1 lit. c) GDPR; the legal basis for setting the cookie is Section 25 para. 2 no. 2 TDDDG.
    8. 5.6. You can call up the cookie banner again at any time and change your consent by clicking on the icon displayed at the bottom of every page of this website to reopen the cookie banner.
  1. 6. Use of contact forms and e-mail
    1. 6.1. We collect your personal data when you provide it to us via our contact forms or contact us by e-mail. We then record the information that comes about when you contact us. This includes, in particular, names and transmitted contact data, date and reason for contacting us. The personal data collected from you will only be used for the purpose of providing you with the requested products or services and corresponding with you. If you contact us and are interested in an offer, your personal data will be processed for the purpose of initiating a contract in accordance with Art. 6 para. 1 lit. b) GDPR. Otherwise, your request will be processed to protect our legitimate interest in the proper processing and answering of your request on the basis of Art. 6 para. 1 lit. f) GDPR. Your data will be forwarded to us by email via our provider. If it is not provided, we will unfortunately not be able to contact you and process your request.
    2. 6.2. The data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected. For the personal data from the input screen of the contact form, this is the case when the respective conversation with you has ended. The conversation is ended when it can be inferred from the circumstances that the matter in question has been conclusively clarified. If the data provided is subject to retention obligations under tax and commercial law, it will be stored for the duration of the statutory retention obligations and then deleted, unless you have consented to further storage or further processing of the data is necessary for the assertion, exercise or defense of legal claims.
  2. 7. Google Analytics
    1. 7.1. Our website uses Google Analytics, a web tracking service provided by Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland ("Google"). The purpose of our use of this tool is to enable us to analyze your user interactions on websites and to use the statistics and reports obtained to improve our offering and make it more interesting for you as a user.
    2. 7.2. Google stores various cookies on your end device for analysis purposes. During your website visit, the following data is transmitted to Google: Pages viewed, your behavior on the pages (for example, length of stay, clicks, scroll depth), your approximate location (country and city), your Internet address (IP address), technical information such as browser, Internet provider, end device and screen resolution, source of origin of your visit (i.e. via which website or advertising medium you came to us) and a randomly generated user ID. No personal data such as name, address or contact details are transmitted to Google. For your protection, we use the anonymization function ("IP masking"), i.e. Google shortens the IP addresses by the last octet within the EU/EEA.
    3. 7.3. Google also processes the data collected via Google Analytics for its own purposes in accordance with its own privacy policy. The data may be stored by Google in user profiles and processed, for example, to improve products, develop new products, measure the effectiveness of certain advertising and market research and personalize content and advertisements. If you are logged in to Google, your data will be assigned directly to your user account. If you do not wish to be associated with your Google user account, you must log out before activating Google Analytics. We have no influence on the further processing of your data by Google. You can find more information on this in Google's privacy policy at https://policies.google.com/privacy.
    4. 7.4. The data collected by Google Analytics is stored for a maximum of 14 months . The storage period of the cookies used by Google can be found in the cookie banner. You can find an overview of the cookies used by Google at https://policies.google.com/technologies/cookies?hl=de.
    5. 7.5. The legal basis for the collection and further processing of the information is your consent in accordance with Art. 6 para. 1 lit. a) GDPR. The legal basis for the use of cookies or similar technologies on your end device is Section 25 (1) TDDDG. You can withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal. The easiest way to revoke your consent is via our cookie banner or by installing the Google browser add-on, which can be accessed via the following link: https://tools.google.com/dlpage/gaoptout?hl=de.
    6. 7.6. You can find more information on the scope of services provided by Google Analytics at https://marketingplatform.google.com/about/analytics/terms/de/. Google provides information on data processing eitung when using Google Analytics at the following link: https://support.google.com/analytics/answer/6004245?hl=de .
    7. 7.7. In connection with the above-mentioned functions, Google may also transfer the processed data to servers outside the EU, in particular to Google LLC in the USA, insofar as this is necessary for the provision of these services. For the USA, the EU-U.S. Data Privacy Framework is an adequacy decision of the EU Commission, which certifies that certified companies have an adequate level of data protection within the meaning of the GDPR. Google LLC is certified under the EU-U.S. Data Privacy Framework and is also entered in the list maintained by the U.S. Department of Commerce (Data Privacy Framework List). A consistently high level of data protection is therefore guaranteed when data is transferred to Google LLC servers in the USA. Insofar as data is transferred to the USA, such a third country transfer is based on Art. 45 para. 1 sentence 1 GDPR.
  3. 8. Google Tag Manager
    1. 8.1. We also use Google Tag Manager on our website in connection with Google Analytics. The provider is again Google.
    2. 8.2. Google Tag Manager is a tool that we can use to integrate tracking or statistics tools (in this case Google Analytics) and other technologies on our website. The Google Tag Manager itself does not create any user profiles, does not store any cookies and does not carry out any independent analyses. It is only used to manage and display the tools integrated via it. However, Google Tag Manager records your IP address, which may also be transmitted to Google's parent company in the USA (see the above information on the US transfer of Google Analytics).
    3. 8.3. If you do not activate tracking by Google Analytics (see above), you will not be recorded by the Google Tag Manager.
  4. 9. Integration of YouTube videos
    1. 9.1. Content (such as videos) from the YouTube platform may also be integrated into our website. This service is operated by YouTube, a subsidiary of Google. Google Ireland Limited, Gordon House, Barrow Street Dublin 4, Ireland, is responsible for data processing in Europe.
    2. 9.2. We use embedded YouTube videos in extended data protection mode . This means that YouTube does not store cookies for a user who views a website with an embedded YouTube video player but does not click on the video to start playback.
    3. 9.3. The videos will only be loaded and played if you expressly consent to the use of YouTube . In this case, Google sets various cookies and may also receive your IP address together with information about the respective video and your use of the playback functions. If you are logged into your YouTube account at the same time, this information can also be assigned directly to your personal profile. You can prevent this by logging out of your YouTube account beforehand.
    4. 9.4. YouTube also statistically evaluates the views of the videos and provides us with reports on these evaluations, which, however, only contain general information on the views, such as the total number of views. In this respect, we do not receive any more detailed information about the individual users. We therefore assume that no more precise analysis of individual users can be carried out as part of YouTube's analysis of video views. YouTube also evaluates the data automatically and independently, without us being able to deactivate or influence this or gain further insight into the analyses.
    5. 9.5. The storage period of the cookies used by Google can be found in the cookie banner. You can find an overview of the cookies used by Google at https://policies.google.com/technologies/cookies?hl=de. Further information on how YouTube and Google handle user data and how this data is processed can be found in YouTube's privacy policy at https://www.google.de/intl/de/policies/privacy.
    6. 9.6. The legal basis for the collection and further processing of the information is your consent in accordance with Art. 6 para. 1 lit. a) GDPR. The legal basis for the use of cookies or similar technologies on your end device is Section 25 (1) TDDDG. You can withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal. The easiest way to revoke your consent is via our cookie banner.
    7. 9.7. In connection with the above-mentioned functions, YouTube may also transfer the processed data to servers outside the EU, in particular to Google LLC in the USA, insofar as this is necessary for the provision of these services. For the USA, the EU-U.S. Data Privacy Framework is an adequacy decision of the EU Commission, which certifies that certified companies have an adequate level of data protection within the meaning of the GDPR. Google LLC is certified under the EU-U.S. Data Privacy Framework and is also entered in the list maintained by the U.S. Department of Commerce (Data Privacy Framework List). When data is transferred to Google LLC servers in the USA, a consistently high level of data protection is therefore guaranteed Insofar as data is transferred to the USA, such a third country transfer is based on Art. 45 para. 1 sentence 1 GDPR.
  5. 10. Online meeting via TeamViewer

10.1. We use the TeamViewer tool to conduct telephone conferences, online meetings, video conferences and/or webinars (hereinafter: "online meetings"). TeamViewer is a tool from TeamViewer Germany GmbH, Bahnhofsplatz 2, 73033 Göppingen, Germany.

10.2. If you access the provider's website, the provider is responsible for data processing. It may be necessary to access the website in order to download the software for use. Or if you do not want to or cannot use the provider app, you can also use the tool via your browser, for example. The service is then also provided via the provider's website. Details on data processing can be found in TeamViewer's privacy policy at https://www.teamviewer.com/de/datenschutzerklaerung/.

10.3. Various types of data are processed when TeamViewer is used. The scope of the data also depends on the data you provide before or during participation in an online meeting. The following personal data is processed: User details: e.g. display name, e-mail address if applicable, profile picture (optional), preferred language; meeting metadata: e.g. date, time, meeting ID, telephone numbers, location; text, audio and video data: You may have the option of using the chat function in an online meeting. In this respect, the text entries you make are processed in order to display them in the online meeting. In order to enable the display of video and the playback of audio, the data from the microphone of your end device and from any video camera of the end device will be processed accordingly for the duration of the meeting. You can switch off or mute the camera or microphone yourself at any time via the respective applications.

10.4. We use TeamViewer to conduct online meetings. If we want to record online meetings or switch to your desktop interface, we will inform you transparently in advance and - if necessary - ask for your consent. If it is necessary for the purposes of logging the results of an online meeting, we will log the chat content. However, this will not usually be the case.

10.5. The legal basis for data processing when conducting online meetings is Art. 6 para. 1 lit. b) GDPR, insofar as the meetings are conducted within the framework of contractual relationships. If there is no contractual relationship, the legal basis is Art. 6 para. 1 lit. f) GDPR. Our legitimate interest lies in the effective conduct of online meetings.

10.6. Please note that - initiated by TeamViewer - cookies and similar technologies may be used through the integration and use of the TeamViewer software. The legal basis for the use of cookies or similar technologies on your end device is Section 25 (1) TDDDG. You may withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.

10.7. Personal data that is processed in connection with participation in online meetings is not passed on to third parties unless it is intended to be passed on. Please note that content from online meetings as well as face-to-face meetings is often used to communicate information with customers, interested parties or third parties and is therefore intended to be passed on. The provider of TeamViewer necessarily receives knowledge of the above-mentioned data insofar as this is provided for in our order processing contract with TeamViewer.

  1. 11. Processing of personal data for job applications
    1. 11.1 We only collect your personal data as an applicant if you provide it to us voluntarily by e-mail, by post or by telephone or via our online form . This applies both to applications in response to job advertisements and to unsolicited applications. We then record the information provided in the application. This includes, in particular, name, date of birth, contact details, interests, qualification data and educational and professional background. The personal data collected from you will only be used for the purpose of carrying out the application process. The legal basis is Art. 6 para. 1 lit. b) GDPR and Art. 88 GDPR in conjunction with. § Section 26 para. 1 sentence 1 BDSG.
    2. 11.2. You are not obliged to provide the aforementioned personal data. However, the data provided is required to carry out the application process and may also be required to conclude a future contract after the application process has been completed. Without the provision of the data, it may not be possible to communicate, carry out the application process or conclude a contract.
    3. 11.3. The relevant data in each individual case is transmitted on the basis of the statutory provisions or a contractual agreement. Access to your personal data in the application process is only granted to employees of the HR department, employees of the management and the respective head of department. Your personal data will not be transferred to third parties. There is no intention to transfer your data to a recipient in a third country (not a member state of the EU/EEA) or an international organization.
    4. 11.4. The data will be deleted as soon as it is no longer required for the purpose for which it was collected. Therefore, in the event of a rejection, we will store your data for six months after the application procedure has been completed and then delete it. If you consent to a longer storage period, we will inform you in advance of the storage period of two years. After this period, we will either delete your data or obtain your consent again.
    5. 11.5. We also offer you the option of logging in to the application form with your Xing profile to make it easier to enter the data in the application form. Xing (New Work SE Dammtorstraße 30, 20354 Hamburg, Germany) transmits certain information from your account to us, including: Profile details, surname, first name, email address, profile photo, etc. We use this information to pre-fill or update the application form. When you register or log in via Xing, your IP address and other device-related information will be forwarded to Xing. A cookie may also be installed on your computer, but deleted again when you close your browser. You can specify in your browser settings whether you want to allow cookies or not. If you do not want Xing to assign the data collected via our website directly to your profile, you must log out of Xing before visiting our website. XING provides information on data processing and corresponding contact options in its privacy policy at https://privacy.xing.com/de/datenschutzerklaerung/druckversion .
  2. 12. Data security

12.1 We use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties, taking into account the state of the art, the implementation costs and the nature, scope, context and purpose of the processing as well as the existing risks of a data breach (including its probability and impact) for the data subject. Our security measures are continuously improved in line with technological developments.

12.2. We would like to point out that data transmission over the Internet (e.g. when communicating by email) may be subject to security vulnerabilities. Complete protection of data against access by third parties is not possible.

  1. 13. Revocation or objection to the processing of your data
    1. 13.1 If you have given your consent to the processing of your data, you can withdraw it at any time in accordance with Art. 7 (3) GDPR. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.
    2. 13.2. Insofar as we base the processing of your personal data on Art. 6 para. 1 lit. e) GDPR (performance of a task carried out in the public interest) or Art. 6 para. 1 lit. f) GDPR (our legitimate interests), you can object to the processing at any time for reasons arising from your particular situation. When exercising such an objection, we ask you to explain the reasons why we should not process your personal data as we have done. In the event of your justified objection, we will examine the situation and will either discontinue or adapt the data processing or point out to you our compelling reasons worthy of protection on the basis of which we will continue the processing (Art. 21 para. 1 GDPR).
    3. 13.3. Of course, you can object to the processing of your personal data for the purposes of direct advertising and related data analysis at any time. You can send your objection to our contact details above.
  2. 14. Your further rights
    1. 14.1. You have the right to request information about your personal data processed by us in accordance with Art. 15 GDPR.
    2. 14.2. In accordance with Art. 16 GDPR, you can immediately request the correction of incorrect or the completion of your personal data stored by us.
    3. 14.3. You have the right to request the deletion of your personal data stored by us in accordance with Art. 17 GDPR, unless the processing is necessary to exercise the right to freedom of expression and information, to fulfill a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims.
    4. 14.4. In accordance with Art. 18 GDPR, you have the right to demand the restriction of the processing of your personal data if the accuracy of the data is disputed by you, or the processing is unlawful but you refuse to delete it, or we no longer need the data but you need it to assert, exercise or defend legal claims, or you have lodged an objection to the processing in accordance with Art. 21 GDPR.
    5. 14.5. In accordance with Art. 20 GDPR, you have the right to receive your personal data that you have provided to us in a structured, commonly used and machine-readable format or to request that it be transferred to another controller.
    6. 14.6. You also have the right under Art. 77 GDPR to complain to a supervisory authority about the processing of your personal data by us if you are of the opinion that the data processing by us does not comply with the legal requirements.
  3. 15. No automated decision-making (including profiling)

We do not use automated decision-making (including profiling) in accordance with Art. 22 GDPR.

16. Amendment of this data protection notice

We will revise this data protection notice in the event of changes to our website or other occasions and changes in the law that make this necessary. You will always find the current version on this website.

Data protection is important to us
Contact us regarding our privacy policy at:

ZAHORANSKY AG
Anton-Zahoransky-Strasse 1
79674 Todtnau-Geschwend
Germany

E-Mail: datenschutz@zahoransky.com
Contact
Read about our GTC & Conditions of purchase.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.