CLOSE
GSP Europe GmbH
represented by the Managing Director Milko Wolf
Leyboldstraße 10
50354 Hürth
Germany
Tel.: +49 2233 8088-40
Fax: +49 2233 8088-499
Telephone: +49 2233 8088-40
E-mail: info(at)gsp-europe.com
(Hereafter "we" or "the company" or "controller")
As the operator of the website www.gsp-europe.com, is responsible for the personal data of the users (hereinafter "you" or "the user" or "the data subject") of the website within the meaning of the General Data Protection Regulation ("GDPR").
We protect your privacy and your personal data. We collect, process, and use your personal data in accordance with the content of these data protection regulations and the applicable data protection rules, in particular the GDPR. These data protection regulations govern the personal data we collect, process, and use. Please read the following statements carefully.
The privacy policy contains the following sections:
Collection of personal data
Purpose and legal basis
Data processing in third countries
Information about your computer and cookies
Website provision and web hosting
Contact form data
Data security
Disclosure of your personal data
Privacy policy and third party sites
Presence in social media portals
Status and changes to these data protection regulations
Your rights and contact information
1.1 Personal data within the meaning of these data protection regulations is any information that relates to an identified or identifiable natural person (hereinafter "data subject"). This includes in particular your name, your e-mail address, and your telephone number (when using the contact form).
1.2 Personal data also includes information about your use of our website. In this context, we collect the following personal data:
Information about your visits to our website, such as the amount of data transferred, the location from which you retrieve data from our website and other connection data and sources that you retrieve. This is usually done through the use of log files and cookies. Further information on log files and cookies can be found below.
1.3 Generally, your personal data is stored for a period of one day. If we collect your IP address, it will only be stored for the time you are using the website and is then immediately deleted or anonymized through truncation. The remaining data is stored for a limited period of time based on the following criteria:
Legitimate interest
Performance of contracts and pre-contractual inquiries
1.4 We only use data that we receive from you.
2.1 We use your personal data for the following purposes:
To ensure that our website is presented to you in the most effective and interesting way.
To fulfill our obligations under any contract we may have with you.
To enable you to participate in interactive offerings, if you choose to do so.
2.2 Your personal data is processed on the following legal bases:
2.2.1 The collection of the data listed in section 1.2 (the information about your visits to the website, for example the scope of data transfer, the location from which you access data on our website and other connection data) is based on:
Fulfillment of contract and pre-contractual inquiries (Art. 6 (1) sentence (1) letter (b) GDPR). Processing is necessary for the performance of a contract to which the data subject is party or for the implementation of pre-contractual measures that are taken at the request of the data subject.
Legitimate interests (Art. 6 (1) sentence (1) letter (f) GDPR). Processing is necessary for the purposes of the legitimate interests of the controller or of a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require the protection of personal data.
2.2.2 The collection of information about your computer as described in sections 1.2 and 3.1 (IP address, status and data volume of the request) is based on:
Legitimate interests (Art. 6 (1) sentence (1) letter (f) GDPR). Processing is necessary for the purposes of the legitimate interests of the controller or of a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require the protection of personal data.
Fulfillment of contract and pre-contractual inquiries (Art. 6 (1) sentence (1) letter (b) GDPR). Processing is necessary for the performance of a contract to which the data subject is party or for the implementation of pre-contractual measures that are taken at the request of the data subject.
2.2.3 If the consent was the legal basis for data collection/data processing, you can revoke it at any time. This does not affect the lawfulness of the processing that took place on the basis of the consent until revocation. To exercise your right of revocation, please contact us at datenschutz@gsp-europe.com.
If we process data in a third country (i.e., outside the European Union (EU), the European Economic Area (EEA)) or if the processing takes place in the context of the use of third-party services or the disclosure or transfer of data to other persons, entities or companies, this will only be carried out in accordance with the legal requirements.
Subject to express consent or contractually or legally required transmission, we only process or have data processed in third countries which provide a recognized level of data protection, contractual obligation through so-called standard protection clauses of the EU Commission, with certifications or binding internal data protection rules (Art. 44 to 49 GDPR, Information page of the EU Commission:https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection_de)
4.1 Every time you access our website, we collect the following information about your computer:
IP address of your computer
your browser request
time of inquiry
the status and
the amount of data transferred
the name of the website from which access was made.
The IP address of your computer will only be stored for the time you are using the website and will subsequently be deleted immediately. We use this data in order to operate our website, in particular to identify and eliminate errors on the website, to determine the utilization of the website, and to make adjustments or improvements.
4.2 We may also collect information about your use of our website through the use of so-called browser cookies. Browser cookies are small text files that are stored on your data carrier and that save certain settings and data for exchange with our system via your browser. A cookie usually contains the name of the domain from which the cookie data was sent, information about the age of the cookie, and an alphanumeric identifier.
Cookies enable our systems to recognize the user's device and make any default settings available immediately. As soon as a user accesses the platform, a cookie is transferred to the hard drive of the user's computer. Cookies help us to improve our website and to better tailor our services to you. They enable us to recognize your computer when you return to our website and
save information about your preferred activities on the website and thus tailor our website to your individual interests. This includes, for example, advertising that fits your personal interests.
To speed up the processing of your requests.
4.3 Only the data explained above about your use of the website is stored in the cookies we use. This is not done by allocating the data to you personally, but by assigning an identification number to the cookie ("cookie ID"). The cookie ID is not allocated to your name, your IP address, or similar data that would enable the cookie to be assigned to you. We only use necessary cookies. These cookies are deleted at the end of the day of the session.
4.4 Any processing of personal data that is not absolutely necessary requires your consent. This includes in particular cookies for analysis, tracking, or advertising purposes. Corresponding data will only be processed with your express consent. This also applies in the event that personal data is passed on to business partners or third parties, Article 6 (1) sentence (1) letter (a) GDPR. The consent can be revoked at any time with effect for the future. We currently do not use such cookies.
When you visit our website, we process your data in order to be able to provide you with our online content. For this purpose we process the IP address of the user, which is necessary to transmit the content and functions of our online services to the browser or the end device of the user.
Types of data processed: Usage data (e.g., websites visited, interest in content, access times); Meta/communication data (e.g., device information, IP addresses); Content data (e.g., entries in online forms).
Data subjects: Users (website visitors)
Purposes of processing: Provision of our online content and user-friendliness; Information technology infrastructure (operation and provision of information systems and technical devices (computers, servers, etc.)); Security measures.
Legal basis: Legitimate interests (Art. 6 (1) sentence (1) letter (f) GDPR).
We use the following host: Alibaba USA, 2901 Coronado Dr, Santa Clara, CA 95054, IP 47.88.21.110
Further information on processing, procedures, and services:
Provision of online content on leased storage space: For the provision of our online content (website), we use storage space, computing capacity, and software that we lease from a corresponding server provider (also called a web host). Legal basis: Legitimate interests (Art. 6 (1) sentence (1) letter (f) GDPR).
Provision of online content on our own/dedicated server hardware: For the provision of our online content, we use server hardware operated by us as well as the associated storage space, computing capacity, and software. Legal basis: Legitimate interests (Art. 6 (1) sentence (1) letter (f) GDPR).
Collection of access data and log files: Access to our online content is logged in the form of so-called "server log files." The server log files may include the address and name of the web pages and files accessed, the date and time of access, the volume of data transferred, notification of successful access, browser type and version, the user's operating system, referrer URL (the previously visited page) and, as a rule, IP addresses and the requesting provider. The server log files can be used on the one hand for security purposes, for example to avoid overloading the server (especially in the case of malicious attacks, so-called DDoS attacks) and on the other hand to ensure server utilization and stability; Legal basis: Legitimate interests (Art. 6 (1) sentence (1) letter (f) GDPR); Deletion of data: Log file information is stored for a maximum of 30 days and then deleted or anynomized. Data whose further storage is required for evidence purposes are excluded from deletion until the respective incident has been clarified.
E-mail dispatch and hosting: The web hosting services we use also include the dispatch, receipt, and storage of e-mails. For these purposes, the addresses of the recipients and senders as well as other information regarding the e-mail dispatch (e.g., the providers involved) and the content of the respective e-mails are processed. The aforementioned data can also be processed for SPAM detection purposes. Please note that e-mails on the Internet are generally not sent in encrypted form. As a rule, e-mails are encrypted during transport, but (unless a so-called end-to-end encryption method is used) not on the servers from which they are sent and received. We can therefore assume no responsibility for the transmission path of the e-mails between the sender and receipt on our server; Legal basis: Legitimate interests (Art. 6 (1) sentence (1) letter (f) GDPR).
SERVER PROVIDER USA and China: hosting and software for the creation, provision, and operation of websites, blogs, and other online offers; Service provider: Alibaba USA Legal basis: Legitimate interests (Article 6 (1) sentence (1) letter (f) GDPR); Website: https://us.alibabacloud.com Privacy policy: https://www.alibabacloud.com/help/en/legal/latest/alibaba-cloud-international-website-privacy-policy Order processing agreement: GSP Automotive Group Wenzhou CO., LTD. Further information: As part of the aforementioned services, Alibaba USA also transmits data toGSP Automotive Group Wenzhou CO., LTD., No.1 Gaoxiang Road, High-tech Industrial Zone Ouhai District, Wenzhou, Zhejiang, China on the basis of standard contractual clauses or an equivalent data protection guarantee as part of further processing on behalf of GSP Automotive Group Wenzhou CO., LTD. We have concluded standard contractual clauses with GSP Automotive Group Wenzhou CO., LTD. or have Corporate Binding Rules.
The website features a contact form through which you can contact us electronically.
To use it, you must enter the mandatory fields marked with * in the corresponding input mask, all other information is optional. The mandatory fields are:
Name
Phone number
This data is transmitted to the department in our company responsible for processing and stored in our systems. At the time of sending, the date and time of entry are saved.
The data stored in the input mask are:
IP address of the user
Date and time of contact
E-mail address
Phone number
Name
Message
Your consent will be obtained for the processing of the data as part of the inquiry process. Alternatively, you can contact us via the email address provided. In this case, the user's personal data transmitted with the e-mail will be stored.
The data will not be passed on to third parties in this case. The data will only be used to process the conversation.
The legal bases for the processing of personal data are:
Fulfillment of contract and pre-contractual inquiries according to Art. 6 (1) letter (b) GDPR and
Legitimate interest according to Art. 6 (1) sentence (1) letter (f) GDPR.
The data will be deleted as soon as the communication process is completed.
You have the option to revoke your consent to the processing of personal data. You can use the e-mail address datenschutz@gsp-europe.com for this. In this case, all personal data stored in the course of making contact will be deleted with effect for the future. Depending on the time of your revocation, it may no longer be possible for us to contact you.
We use the SSL (Secure Socket Layer) method on our website in conjunction with the highest level of encryption supported by your browser. Usually this is 256-bit encryption. If your browser does not support this, we will use 128-bit technology instead. You can tell whether an individual page of our website is transmitted in encrypted form, for example, by means of the lock symbol in the address bar of your browser.
We do not pass on your personal data to third parties unless you have consented to the data being passed on or we are entitled or obliged to pass on data on the basis of legal provisions and/or official or court orders. In particular, this may involve the provision of information for the purposes of criminal prosecution, for security purposes, or to enforce intellectual property rights.
The website may contain hyperlinks to and from third party websites. If you follow a hyperlink to one of these websites, please note that we cannot accept any responsibility or guarantee for third-party content or the data protection conditions. Please check the applicable data protection conditions before you submit any personal data to these websites.
We maintain an online presence in social networks and process user data in this context in order to communicate with the active users there or to offer information about us.
Please note that your data may be processed outside the European Union. This may entail risks for you, e.g., because enforcing user rights might be more difficult.
Furthermore, user data is usually processed within social networks for market research and advertising purposes. For example, usage profiles can be created on the basis of usage behavior and the resulting interests of users. The usage profiles can in turn be used, for example, to place advertisements inside and outside the networks that presumably correspond to the interests of the users. For these purposes, cookies are usually stored on the users' computers, in which the usage behavior and the interests of the users are stored. Furthermore, data can also be stored in the usage profiles independently of the devices used by the users (especially if the users are members of the respective platforms and are logged in to them).
For a detailed description of the respective processing methodologies and the possibility of objection (opt-out), we refer to the data protection declarations and information provided by the operators of the respective networks.
Also in the case of requests for information and the assertion of data subject rights, we would like to point out that these can be asserted most effectively with the providers. Only the providers have access to the data of the users and can take appropriate measures and provide information directly. If you still need help, please contact us.
Types of data processed: Contact details (e.g., e-mail, telephone numbers); Content data (e.g., entries in online forms); Usage data (e.g., websites visited, interest in content, access times); Meta/communication data (e.g., device information, IP addresses).
Data subjects: Users (e.g., website visitors, users of online services).
Purposes of processing: Contact requests and communication; Feedback (e.g. collecting feedback via online form); Marketing.
Legal basis: Legitimate interests (Art. 6 (1) sentence (1) letter (f) GDPR).
Further information on processing, procedures, and services:
Instagram: Social network; Service provider: Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland; Legal basis: Legitimate interests (Art. 6 (1) sentence (1) letter (f) GDPR); Website https://www.instagram.com; Privacy policy: https://instagram.com/about/legal/privacy.
Facebook pages: Profiles on the Facebook social network – We are jointly responsible with Meta Platforms Ireland Limited for the collection (but not further processing) of data from visitors to our Facebook page (so-called "fan page"). This data includes information about the types of content users view or interact with, or the actions they take (see "Things Done and Provided by You and Others" in the Facebook Data Policy:https://www.facebook.com/policy), as well as information about the devices used by the users (e.g., IP addresses, operating system, browser type, language settings, cookie data; see under "Device information" in the Facebook Data Policy: https://www.facebook.com/policy). As explained in the Facebook Privacy Policy under "How do we use this information?", Facebook also collects and uses information to provide analytics services, called "Page Insights," to page operators to provide them with insights into how people interact with their pages and with content associated with them. We have concluded a special agreement with Facebook ("Information on Page Insights", https://www.facebook.com/legal/terms/page_controller_addendum), which regulates in particular which security measures Facebook must observe and in which Facebook has agreed to fulfill the rights of the data subject (i.e. users can, for example, send information or requests for deletion directly to Facebook). The rights of users (in particular to information, deletion, objection and complaints to the competent supervisory authority) are not restricted by the agreements with Facebook. Further information can be found in the "Information on page insights" (https://www.facebook.com/legal/terms/information_about_page_insights_data); Service provider: Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland; Legal basis: Legitimate interests (Art. 6 (1) sentence (1) letter (f) GDPR); Website: https://www.facebook.com; Privacy policy: https://www.facebook.com/about/privacy; Standard contractual clauses (ensuring the level of data protection when processing in third countries): https://www.facebook.com/legal/EU_data_transfer_addendum; Further information: Agreement of joint responsibility: https://www.facebook.com/legal/terms/information_about_page_insights_data. Joint controllership is limited to the collection and transmission of data to Meta Platforms Ireland Limited, an EU based company. Further processing of the data is the sole responsibility of Meta Platforms Ireland Limited, which in particular concerns the transmission of the data to the parent company Meta Platforms, Inc. in the USA (on the basis of the standard contractual clauses concluded between Meta Platforms Ireland Limited and Meta Platforms, Inc.).
LinkedIn: Social network; Service provider: LinkedIn Ireland Unlimited Company, Wilton Plaza Wilton Place, Dublin 2, Ireland; Legal basis: Legitimate interests (Art. 6 (1) sentence (1) letter (f) GDPR); Website: https://www.linkedin.com; Privacy policy: https://www.linkedin.com/legal/privacy-policy; Order processing agreement: https://legal.linkedin.com/dpa; Standard contractual clauses (ensuring the level of data protection when processing in third countries): https://legal.linkedin.com/dpa; Possibility to object (opt-out): https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.
YouTube: Social network and video platform; Service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; Legal basis: Legitimate interests (Art. 6 (1) sentence (1) letter (f) GDPR); Privacy policy: https://policies.google.com/privacy; Possibility to object (opt-out): https://adssettings.google.com/authenticated.
Google Analytics https://support.google.com/analytics/answer/7667196?hl=en
This privacy policy is valid and was last updated on 20.12.2022.
We reserve the right to change these data protection regulations at any time with effect for the future. A current version is available on the website. Please visit the website regularly and find out about the applicable data protection regulations.
If we provide addresses and contact information of companies and organizations in this privacy policy, please note that the addresses can change over time. Please check the information before contacting us.
With regard to the processing of your personal data, you as the data subject have various rights under the GDPR, which result in particular from Articles 15 to 21 of the GDPR.
First of all, you have an extensive right to information and, if necessary, you can request the correction and/or deletion and/or blocking of your personal data. You can also request limited processing and have a right to object and a right to data portability.
Your rights in detail:
Right to information (Art. 15 GDPR): You have the right to request confirmation as to whether the data in question is being processed and to request information about this data as well as further information and a copy of the data in accordance with the legal requirements.
Right to rectification (Art. 16 GDPR): In accordance with the legal requirements, you have the right to request the completion of the data concerning your person or the correction of incorrect data concerning your person.
Right to erasure (Art. 17 GDPR) and restriction of processing (Art. 18 GDPR): In accordance with the legal requirements, you have the right to demand that data relating to you be deleted immediately, or alternatively, in accordance with the legal requirements, you have the right to request the restriction of processing of the data.
Right to data transferability (Art. 20 GDPR): You have the right to receive data concerning your person that you have provided to us in accordance with the legal requirements in a structured, common, and machine-readable format or to request its transmission to another person responsible.
Right to object (Article 21 GDPR): For reasons arising from your unique situation, you have the right to object at any time to the processing of your personal data, which is based on Article 6 (1) letter (e) or (f) GDPR to file an objection; this also applies to profiling based on these provisions. If the personal data concerning you is processed for the purpose of direct advertising, you have the right to object at any time to the processing of personal data concerning you for the purpose of such advertising; this also applies to profiling, insofar as it is related to such direct advertising.
Right of withdrawal for consent (Article 7 (3) GDPR): You have the right to withdraw your consent at any time.
In addition, you have the right to lodge a complaint with a supervisory authority.
Complaint to the supervisory authority (Article 77 GDPR): Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your permanent residence, your place of work, or the place of the alleged infringement, if you believe that the processing of your personal data violates the provisions of the GDPR
If you assert any of your rights and/or would like to find out more, please contact us at datenschutz(at)gsp-europe.com.
