Thank you for your interest in our online presence. The protection of your personal data is very important to us.
We would therefore like to take this opportunity to inform you about data protection in our company. Of course, we comply with the legal provisions of the EU's General Data Protection Regulation (EU GDPR), Germany's Federal Data Protection Act (BDSG), Telemedia Act (TMG) and other data protection regulations.
1. Name and contact details of the data controller and the company data protection officer
The following data protection information applies to data processing by:
Data controller:
REA Systeme GmbH
Teichwiesenstrasse 1
64367 Mühltal
Germany
The company data protection officer of REA Systeme GmbH is TÜV Technische Überwachung Hessen GmbH. You can reach the data protection officer via e-mail: datenschutzinfo(at)rea.de.
2. Collection and processing of personal data
In principle, you can visit our websites without telling us who you are. We only gain technical data, such as the name of your Internet service provider, the website from which you came and the web pages you visit on our site. This information is evaluated with date and time information for internal statistical purposes of advertising, website analysis and for the demand-oriented design of our websites. As a user, you remain completely anonymous.
Personal data is only collected if you provide it to us voluntarily, for example in the context of a customer inquiry.
2.1 Customer data
If you provide us with personal data, we store and use your data in accordance with the legal requirements exclusively for the specified purpose, such as to respond to a contact and/or service request or to send our newsletter. Your data will only be processed further or passed on to third parties to the extent that this is necessary for the processing of your message.
Contact form / callback form / service form
For the purpose of contacting you, the data you provide will be processed and sent in encrypted form to the reception of REA Systeme GmbH (reainfo(at)rea.de, +49 6154 6380). The required data will be marked as mandatory fields. Any further information is provided on a voluntary basis. The processing is carried out for the purpose of dealing with the requests on the basis of Art. 6 (1) (b, f) GDPR.
We would like to point out that we will process your data exclusively for the purpose of answering your contact inquiry and, if necessary, forward it within the REA Group of Companies (REA Systeme GmbH, REA Elektronik GmbH, REA Systemtechnik GmbH, REA Card GmbH), to international branches and national/international sales partners of REA Elektronik GmbH. Your data will only be passed on to the extent that this is necessary for the processing of your message.
To obtain more information about the processing of data, you can contact the relevant department using the contact details above. The contact details of the data protection officer and further information on data protection at REA Systeme GmbH can be found in our privacy policy.
3. Applications
On our career page at jobs.rea.de you have the possibility to apply online for advertised positions or to submit a speculative application. If you make use of this offer, a new window will open with an application form. This form is provided by means of the "HRworks" tool. An order processing agreement has been concluded with HRworks. Your data is stored encrypted in the Amazon Web Services (AWS) data center located in Ireland.
We store your applicant data for the duration of the examination of your application. If your application is not successful or if you withdraw your application, your application data will be deleted after a maximum of 6 months, unless you have expressly agreed to a longer storage period. Any forwarding of your data within the REA Group of Companies (REA Elektronik GmbH, REA Systemtechnik GmbH, REA Systeme GmbH, REA Card GmbH) also takes place exclusively with your consent. If your application is successful, the data you have provided via the application system will be processed in relation to your future employment with us. The legal basis is Art. 6 (1) (a, b and f) GDPR as well as § 26 of the German Federal Data Protection Act (BDSG).
If you do not provide us with the required personal data, this will not have any negative consequences for you. However, incomplete or incorrectly completed applications will not be considered. Unfortunately, without providing your personal data, the application cannot be submitted and will therefore be deleted.
4. Data protection information for online meetings, telephone conferences and webinars via "Zoom"
We would like to inform you in the following about how personal data is processed in conjunction with the use of "Zoom".
4.1 Purpose of processing
We use the tool "Zoom" to carry out conference calls, online meetings, video conferences, initial conversations for selecting applicants and/or webinars (hereinafter: "online meetings"). "Zoom" is a service of Zoom Video Communications, Inc., which is headquartered in the United States of America (USA).
4.2 Data controller
The controller for data processing that is directly associated with the execution of "online meetings" is REA Systeme GmbH.
Please note: Insofar as you call up the Internet site of "Zoom", the provider of "Zoom" is responsible for the data processing. For "Zoom" to be used, however, the Internet site only needs to be called up to download the software for using "Zoom".
You can also use "Zoom" if you enter the respective meeting ID and, where appropriate, additional access data for the meeting, directly in the "Zoom" app.
If you do not want to or cannot use the "Zoom" app, then the basic functions can also be used through a browser version, which you can also find on the website of "Zoom".
4.3 What data is processed?
When "Zoom" is used, various data types are processed. The scope of data depends on the specifications you make regarding data before and/or while participating in an "online meeting".
The following personal data is the subject matter of the processing:
Information about the user: First name, last name, phone number (optional), email address, password (if "Single Sign-On" is not used), profile image (optional),
Department: (optional)
Meeting metadata: Subject, description (optional), participant IP addresses, device/hardware information
For dialing in by phone: Information about inbound and outbound phone number, country name, start and end time. Where appropriate, additional connection data, such as the IP address of the device, can be stored.
Text, audio and video data: You may have the option of using the chat, Q&A and polling features during an online meeting. In this respect, the text that you input will be processed to be displayed in the "online meeting" and, where appropriate, to be recorded. To enable video and audio to be played, the data from the microphone and any video camera of your terminal device will be processed accordingly for the duration of the meeting. You can switch off or mute the camera or microphone yourself at any time using the "Zoom" applications.
To participate in an "online meeting" or enter the "meeting room", you have to at least provide information about your name.
4.4 Scope of processing
We use "Zoom" to conduct "online meetings".
If you are a registered user of "Zoom", then reports about "online meetings" (meeting metadata, data about dial-ins, questions and answers in webinars, polling features in webinars) can be stored at "Zoom" for up to one month.
Automated decision making as defined by Art. 22 GDPR will not be used.
4.5 Legal bases for data processing
Insofar as personal data of applicants is processed, the legal basis for the data processing is the consent given by the data subject. The withdrawal of consent shall be possible at any time and shall be directed to datenschutzinfo@rea.de.
Insofar as the personal data of REA Systeme GmbH employees is processed, § 26 of the German Federal Data Protection Act (BDSG) is the legal basis for the data processing. If personal data is not required for establishing, carrying out or terminating the employment relationship in conjunction with the use of "Zoom", yet it is an elementary component for the use of "Zoom", then Art. 6 1. (f) GDPR is the legal basis for the data processing. In these cases, our interest lies in the effective execution of "online meetings".
Otherwise the legal basis for data processing for execution of "online meetings" is Art. 6 1. (b) GDPR, provided that the meetings are carried out within the framework of contractual relationships.
If no contractual relationship exists, the legal basis is Art. 6 1. (f) GDPR. Here too, our interest lies in holding "online meetings" effectively.
4.6 Recipients / forwarding data
Personal data that is processed in conjunction with participation in "online meetings" is never forwarded to third parties, insofar as it has not been specifically designated for forwarding. Please note that contents from "online meetings" as well as personal meetings are frequently intended specifically for communicating information to customers, prospects or third parties and thus are designated for forwarding.
Further recipients: The provider of "Zoom" must receive notice of the aforementioned data insofar as this is provided for within the framework of our data processing agreement with "Zoom".
4.7 Data processing outside of the European Union and the associated restriction rights of data subjects
"Zoom" is a service rendered by a provider from the USA. Consequently, processing of personal data also occurs in a non-EU country. We have made a data processing agreement with the provider of "Zoom" that corresponds to the requirements of Art. 28 GDPR.
Please note that your rights as a data subject from number 6 of this privacy policy can be restricted by Zoom in case of use. Where a legitimate interest exists, the legal situation in the USA allows the US authorities to gain insight into the data of a data processor at any time as well as to demand that it be surrendered.
5. Data transfer to third countries
Personal data may be forwarded to international branches and sales partners of REA Elektronik GmbH in the context of a contact request.
6. Standard periods for the deletion of data
A wide range of retention periods and obligations have been enacted in legislation. After expiry of these periods, the corresponding data is routinely deleted. If data is not affected by this, it will be deleted or made anonymous if the purposes stated in this privacy policy cease to apply. Unless this privacy policy contains other, different provisions regarding the storage of data, the data collected by us will be stored by us for as long as it is necessary for the aforementioned purposes for which it was collected.
Further processing or use of your personal data will generally only take place if permitted by law or if you have consented to the processing or use of the data. In the event of further processing for purposes other than those for which the data was originally collected, we will inform you of these other purposes prior to further processing and provide you with the further relevant information.
7. Data subject rights
Right to information
According to the General Data Protection Regulation, you have a right to free information about your stored data and, if applicable, a right to correction, blocking or deletion of this data. For this purpose and/or to receive more detailed information about this, please contact our data protection officer at TÜV Hessen at datenschutzinfo(at)rea.de.
Right to rectification of inaccurate data
You have the right to request that we rectify personal data relating to you without delay if it is inaccurate (Art. 16 GDPR). For this purpose, please contact the addresses given above.
Right to erasure
You have a right to the immediate erasure ("right to be forgotten") of the personal data concerning you in the event of the existence of the legal grounds pursuant to Art. 17 GDPR. These are, for example, if the personal data is no longer necessary for the purposes for which it was originally processed or you have withdrawn your consent and there is no other legal basis for the processing; the data subject objects to the processing (and there are no overriding reasons for processing – this does not apply to objections to direct marketing). To exercise your above right, please contact us at the contact addresses given previously.
Right to restriction of processing
You have a right to restrict processing if the conditions are met and in accordance with Article 18 of the GDPR. Accordingly, a restriction of processing may be required in particular if the processing is unlawful and the data subject refuses erasure of the personal data and instead requests restriction of the use of the personal data or the data subject has objected to the processing pursuant to Article 21 (1) of the GDPR, as long as it has not yet been determined whether our legitimate grounds override those of the data subject. To exercise your above right, please contact us at the contact addresses given previously.
Right to data portability
You have a right to data portability according to Art. 20 GDPR. In this context, you have the right to receive the data relating to you that you have provided to us in a common, structured and machine-readable format and to transfer this data to another data controller, such as another service provider. The prerequisite for this is that the processing is based on consent or on a contract and is carried out with the aid of automated procedures. To exercise your above right, please contact us at the contact addresses given previously.
Right to object
You have the right, for reasons arising from your particular situation, to object at any time to the processing of your personal data on the basis of Article 6 (1) (e or f) GDPR, among others, this objection being based on Art. 21 GDPR. We will cease to process your personal data unless we can prove compelling reasons for processing worthy of protection which outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims. To exercise your above right, please contact us at the addresses given below.
Right to complain to a supervisory authority
If you believe that the processing of personal data relating to you by us is unlawful, you have the right to complain to the supervisory authority responsible for us, which you can contact as follows:
Der Hessische Datenschutzbeauftragte
Postfach 31 63
65021 Wiesbaden
Germany
Tel.: +49 611 1408-0
E-mail: poststelle(at)datenschutz.hessen.de
8. Use of cookies
9.Use of Matomo (formerly Piwik)
We use Matomo (formerly Piwik) for statistical analysis of visitor accesses. For this purpose, Matomo uses cookies which are stored on your computer and which enable an anonymous analysis of your use of the website. It is not possible to draw conclusions about a specific person, as your IP address is anonymized immediately after processing and before storage. The processing of personal data takes place according to Art. 6 (1) (f) GDPR.
Matomo is used for the purpose of improving the quality of our website and its content. Through this, we learn how the website is used and can thus constantly optimize our offer.
The cookies used by Matomo are stored on the user's computer and transmitted to our site by the user. Therefore, you as a user also have full control over the use of cookies. Cookies that have already been saved can be deleted at any time. This can also be done automatically.
You can object to the storage and evaluation of this data by Matomo at any time. In this case, what is called an opt-out cookie is persistently stored in your browser, which causes Matomo not to collect any data for storage and evaluation. However, if you delete this cookie intentionally or unintentionally, the objection to data storage and analysis will also be lifted and can be renewed via the above link.
Alternatively, most modern browsers have what is called a "Do Not Track" option, which tells websites not to track your user activity. Matomo respects this option."
10. Online presences in social media
We operate several online presences within social media networks and platforms, such as Facebook, Twitter, YouTube, Xing and Instagram, in order to have the opportunity to communicate with active users there and to inform them about our service portfolio. For this purpose, we use the technical platforms and services offered by the operators. In social media networks and on other external platforms, the respective operators' own data protection provisions apply, even if we disseminate information and maintain presences there.
We would like to point out that you use the services of the social media networks and platforms offered here as well as their functions on your own responsibility. This applies in particular to the use of interactive functions (e.g. commenting, sharing, rating, etc.). The data collected about you in this context is processed by the operators of the platforms and may be transferred to countries outside the European Union. What information the operators receive and how it is used is described in general terms in the respective privacy policies. On the individual platforms, you will also find information on how to contact the operators as well as on the setting options for advertisements.
In which way the operators of the social media networks use the data from a visit to the respective pages for their own purposes, to which extent activities on the pages are assigned to individual users, how long this data is stored and whether data from a visit of the respective page is passed on to third parties, is not conclusively and clearly stated by the operators and is not known to us.
Social media network operators use the following tracking systems, among others:
YouTube
You can find more information on data protection here: www.google.de/privacy.html.
11. Plug-ins of the social media networks
Our website uses buttons for the following social media networks:
The buttons are marked with the logo of the respective social media network. However, these are not the usual social plugins, but buttons with deposited links. The buttons must be activated (clicked) separately by you. As long as these buttons are not clicked, no data is transmitted to the social media networks. Only when you click the buttons and thereby declare your consent to communication with the servers of the social media network do the buttons become active and the connection is established.
After clicking, the button corresponds to what is called a share plugin. Information about the visited page is provided to the social media network, which you can share with your contacts in your social media network. If you want to share the information, you must be logged on. If you are not logged on, you will land on the logon page of the social media network you clicked, and you will no longer be on the pages of www.rea-jet.com.
By activating the button, the social media networks then also receive, among other things, the information that you have accessed the corresponding page of our website, and when you did this, as well as, for example, your IP address, details of the browser used and the language settings. When you click the button, your click is transmitted to the social media network and used according to its data usage policy.
When the button is clicked, we have no influence on the collected data and data processing operations and we are not responsible for this data processing, and in this respect we are also not responsible in the sense of the GDPR. We also do not know the full extent of the data collection, its legal basis, the purposes and the storage periods. Therefore, the information provided here is not necessarily complete.
The data is transferred regardless of whether you actually have an account with the provider or are logged on there. If you are logged onto the provider, your data will be linked with your account. Where appropriate, providers may also place cookies on your computer to track you.
According to our knowledge, the provider stores this data in usage profiles, which it uses for the purposes of advertising, market research and/or demand-oriented design of his website. This analysis, which is carried out even for users who are not logged on, is used primarily to display tailored advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles. To exercise this right of objection, please contact the respective provider.
Please refer to the information about the purpose and scope of the data collection and the further processing and use of the data by the corresponding social media network as well as your rights and setting options to protect your privacy:
If you do not want the social media network to receive data about you, do not click the button.
12. Data security
Personal data is processed at REA Elektronik GmbH exclusively in data centers and on computers protected by security technologies that comply with industry standards (e.g. firewalls, password protection, access controls, etc.). We retain personal information only as long as necessary for the purposes for which it was collected or to comply with legal reporting or document retention requirements.
13. Privacy and third-party websites
The website may, from time to time, contain links to and from third-party websites. If you follow a link to one of these websites, please note that these websites are subject to their own data protection regulations and we cannot accept any responsibility or guarantee for third-party data protection conditions.
14. Standard periods for the deletion of data
A wide range of retention periods and obligations have been enacted in legislation. After expiry of these periods, the corresponding data is routinely deleted. If data is not affected by this, it will be deleted or made anonymous if the purposes stated in this privacy policy cease to apply. Unless this privacy policy contains other, different provisions regarding the storage of data, the data collected by us will be stored by us for as long as it is necessary for the aforementioned purposes for which it was collected.
Further processing or use of your personal data will generally only take place if permitted by law or if you have consented to the processing or use of the data. In the event of further processing for purposes other than those for which the data was originally collected, we will inform you of these other purposes prior to further processing and provide you with the further relevant information.
15. Changes to these data protection provisions
We reserve the right to change these data protection provisions with future effect at any time. The latest version is available from the website. Please visit the website regularly to view the current data protection provisions.
Edition: July 2021
16. Inquiries about data protection
TÜV Technische Überwachung Hessen GmbH
datenschutzinfo(at)rea.de