PRIVACY POLICY

SAMSON AG

SMART IN FLOW CONTROL

We are pleased that you take an interest in our company and our web pages. We take the protection of your personal data and privacy very seriously. The following sections contain information on how we handle your data.

Organization in charge:
SAMSON AG
Weismüllerstraße 3
60314 Frankfurt am Main, Germany
Phone: +49 69 4009-0
Fax: +49 69 4009-1507
E-mail: samson(at)samsongroup.remove-this.com
Internet: www.samsongroup.com

The contact details of our data protection officer are as follows:
Data Protection Officer
Weismüllerstraße 3
60314 Frankfurt am Main, Germany
E-mail: privacy-de(at)samsongroup.remove-this.com

If you use one of the sites offered by SAMSON AG, such as our web pages, we process your personal data.

We treat your data with strict confidentiality and use them only for the purposes communicated upon collection of the data. Data processing is based on the EU General Data Protection Regulation (GDPR), the German Federal Data Protection Act (BDSG) and other applicable data protection regulations.

1. Deployment of web pages

Our systems record a number of general data, including personal data, every time you visit our web pages. The following data are saved in our server log files:

  • IP address (possibly in a shorted, anonymized form)
  • Date and time of request (time stamp)
  • Request details and target address (protocol version, HTTP method, referrer, UserAgent string)
  • Name of requested files and transmitted amount of data (requested URL including Query string, size in bytes)
  • Message whether query was successful (HTTP status code)
  • Web page that sent the request
  • Browser type or app used
  • Operating system and its user interface
  • Browser language and version

We draw no conclusions on you as a person when processing these data. We perform neither personalized analyses nor data assessments for profiling.

The processing of personal data is governed by Article 6(1) lit. f) GDPR. Data processing is mandatory to technically provide the web pages and ensure the stability and security of our systems. This also constitutes our legitimate interest. It is impossible to use our web pages without such data processing, which means that you have no opportunity to object.

Your data will be deleted once you leave our web pages and terminate your current session. Your IP address will be deleted no later than seven days after the end of your web page visit.

2. Use of cookies

We use cookies on our web pages. Cookies are saved on your computer and transmitted to our web pages from there. Cookies contain a specific sequence of characters that allows web browsers of returning users to be clearly identified.

We distinguish between essential cookies (section 2.1), convenience cookies (section 2.2) and usage analytics cookies (section 2.3).

You are free to configure how cookies are handled by your browser. You can change the cookie handling settings in your web browser to deactivate or restrict the use of cookies. Cookies that have already been saved can be deleted at any time. This process can also be automated. When cookies have been deactivated for our web pages, you may no longer be able to use all functions provided on our pages. Go to the associated web pages of the browser you are using for more information:

2.1 Essential cookies

Essential cookies are technically required for the proper functioning of our web pages. Some essential cookies ensure the technical stability of our web pages and enable safety functions. The use of certain functions (such as our cart or contact form) would not be possible without essential cookies. It is impossible to use our web pages without such data processing, which means that you have no opportunity to object.

We use this type of cookies to improve the security and functionality of our web pages and applications. Essential cookies contain no personal data, which means that no IP addresses or other information that would permit user tracing is recorded. We use the following essential cookies:

Cookie Provider Purpose Deleted after Type
cookieconsent_status PHP server Retains the status whether the cookie pop-up is clicked 7 days HTTPS
fe_typo_user TYPO3 Retains user status when visiting further pages 30 days HTTPS
ssl1.peoplexs.com People XS Job adverts 6 hours HTTPS
cfid People XS Job adverts 20 days HTTPS
cftoken People XS Job adverts 20 days HTTPS
JSESSIONID People XS Job adverts Session HTTPS
PHPSESSID wwwcertificates.samsongroup.net Indication of product certificates Session HTTPS
language wwwcertificates.samsongroup.net Saves the language selected for product certificates 180 days HTTPS

The processing of personal data using essential cookies is governed by Article 6(1) lit. f) GDPR.

We use technically required cookies to simplify your use of our web pages. Some functions of our web pages cannot be offered without using cookies. This requires your browser to be recognized upon your return. These purposes also constitute our legitimate interest.

We do not use the user data collected in the technically required cookies to create user profiles.

2.2 Convenience cookies

Convenience cookies make it easier to use our web pages. They help us make your visit of our web pages as convenient as possible, e.g. by providing a virtual tour. We use the following cookies for range measurement:

Cookie Provider Purpose Retention period Type
PHPSESSID vtc.view3.com Indication of virtual tour Session HTTPS
cb-enabled vtc.view3.com Indication of virtual tour 1 year HTTPS
_ga view3.com Indication of virtual tour 2 years HTTPS
_gat view3.com Indication of virtual tour 60 seconds HTTPS
_gid view3.com Indication of virtual tour 1 day HTTPS

The processing of personal data using range measurement cookies is governed by your consent according to Article 6(1) lit. a) GDPR.

2.3 Usage analytics cookies

Usage analytics cookies enable us to analyze how you use our web pages. They help us test the efficiency of our web pages and detect errors. Additionally, the cookies enable us to perform web analytics and show us how to optimize our services. We use the following usage analytics cookies:

Tool Provider Purpose Retention period Type
_pk_id.1.6029 Matomo Web analytics and web page optimization 30 days HTTPS
_pk_ses.1.6029 Matomo Web analytics and web page optimization Session HTTPS

The processing of personal data using usage analytics cookies is governed by your consent according to Article 6(1) lit. a) GDPR.

 

2.3.1 Matomo

We use Matomo on our web pages, a web analytics service provided by InnoCraft Ltd., 150 Willis St, 6011 Wellington, New Zealand. We use Matomo to analyze usage of our web pages as well as individual functions and offers to optimize our web pages. Matomo is based on cookies that enable us to analyze your usage of our web pages, including your IP address.

The Anonymize Visitors’ IP Addresses function is activated on our web pages. As a result, your IP address is abbreviated for further processing to rule out personal referencing.

The processing of data is governed by Article 6(1) lit. a) GDPR.

Right of revocation

You have the right to revoke your consent without providing reasons at any time to prevent usage of your data in the future.

If you do not agree with the future transmission of your data to Matomo while using our web pages, you can completely deactivate Matomo. To do so, deactivate Matomo in your browser settings (refer to section 2). In this case, you may no longer be capable of using the full scope of functions available on our web pages.

For further information on the Matomo terms of use and data protection regulations go to https://matomo.org/privacy-policy/.

There is no obligation for you to provide your personal data. Providing data is prescribed neither by law nor by a contract nor is it required to make a contract. However, not providing our data may prevent you from using our web pages or their full scope of functions.

3. Integration of external services

3.1 Integration of Google services

We use the services listed in the following provided by Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland. As part of providing these services, Google may collect personal data. It cannot be excluded that Google transmits these data to US servers as well. For further information go to https://policies.google.com/privacy/frameworks?gl=en&hl=en.

We have no influence on how Google collects which of your personal data. According to the Google privacy policy, the following personal data may be collected depending on the Google service used (https://policies.google.com/privacy?gl=de&hl=en#infocollect):

  • Data about the apps, browser versions and devices that you use to access Google services
  • Unique identifiers, browser type and settings, device type and settings, operating system, information on the mobile phone network (name of mobile service provider, phone number, app version number)
  • Data on how your apps, browser and devices interact with Google services (such as IP address, crash reports, system activities as well as date, time and link URL of your request).
  • Activity data (e.g. search terms you enter, videos that you watch, contents and advertisements that you look at and interact with)
  • Location data

Further information on how Google uses information from sites or apps that use Google services can be found at https://policies.google.com/technologies/partner-sites?hl=en.

Go to the Google privacy policy available at https://policies.google.com/privacy?hl=en for information on the scope and purpose of data processing by Google and your related rights and possible settings to protect your privacy. Go to https://safety.google/privacy/privacy-controls/ for information on how to control your privacy settings.

3.1.1 Google Maps

We use Google Maps. Google Maps is a web mapping service intended to enable you to quickly find the locations mentioned on our web pages. When using Google Maps, Google may process data on your usage of the map functions on our web pages.

The processing of data is governed by Article 6(1) lit. a) GDPR.

Right of revocation

You have the right to revoke your consent without providing reasons at any time.

If you do not agree with the future transmission of your data to Google while using Google Maps, you can completely deactivate the Google Maps web service. To do so, deactivate JavaScript in your browser settings. In this case, you will no longer be able to use Google Maps and the map view.

There is no obligation for you to provide your personal data. Providing data is prescribed neither by law nor by a contract nor is it required to make a contract. However, not providing our data may prevent you from using our web pages or their full scope of functions.

3.1.2 YouTube

Our web pages include contents provided by the YouTube video platform service. YouTube is a service provided by YouTube LLC ("YouTube"), 901 Cherry Ave., San Bruno, CA 94066, USA. YouTube LLC is a subsidiary of Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.

YouTube integration is implemented by embedding the service in our web pages as iFrames. When loading iFrames, it cannot be ruled out that YouTube or Google may process your personal data and transfer them to a server in a third country.

Information on Google's existing privacy shield certification and further information on data processing by Google while using Google services can be found in section 3.1 (Integration of Google services) of this privacy policy.

We include YouTube contents on our web pages to make different videos available to you directly on our web pages so that you do not have to view these contents separately on YouTube. This enables us to optimize our pages and make your user experience more interesting. This also constitutes our legitimate interest.

The processing of personal data is governed by Article 6(1) lit. f) GDPR.

Right to object

You have the right to object to the processing of your personal data. You can send us your objection at any time, for example by e-mail to privacy-de(at)samsongroup.remove-this.com.

We no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defense of legal claims.

There is no obligation for you to provide your personal data. Providing data is prescribed neither by law nor by a contract nor is it required to make a contract. However, not providing our data may prevent you from using our web pages or their full scope of functions.

3.2 Integration of further services

3.2.1 Open Street Maps

We use Leaflet Open Street Maps (https://leafletjs.com/) to illustrate map information on our web pages. Using Leaflet involves the processing of your map usage data by Leaflet. We use the service to present attractive web pages and make the locations specified on our pages easy to find.

The processing of data is governed by Article 6(1) lit. a) GDPR.

Right of revocation

You have the right to revoke your consent without providing reasons at any time. If you do not agree with the future transmission of your data to Leaflet while using Open Street Maps, you can completely deactivate the web service. To do so, deactivate JavaScript in your browser settings (refer to section 2).

In this case, you will not be able to use Open Street Maps and the map view.

For further information refer to the Leaflet website available at https://leafletjs.com/.

There is no obligation for you to provide your personal data. Providing data is prescribed neither by law nor by a contract nor is it required to make a contract. However, not providing our data may prevent you from using our web pages or their full scope of functions.

4. Contacting us

There are different ways of getting into contact with us.

4.1 Scope of data processing

4.1.1 Contact forms

Our website includes contact forms to get in touch with us. We save your personal data transmitted to us through the form. Which data we process becomes evident from the respective input form. In the forms, only those fields are marked as mandatory that are absolutely necessary to use the associated offer.

4.1.2 Other ways of contacting us

Our web pages include different ways for you to get into contact with us by e-mail, ground mail or phone. In this case, we save the personal data transmitted to us as part of your inquiry, such as your e-mail address, address data, phone number or other personal data arising from your inquiry.

4.2 Legal basis

If the personal data are transmitted as part of a general inquiry or e-mail, processing is governed by Article 6(1) lit. f) GDPR. If your inquiry is related to an agreement or if it is made prior to entering into a contract with us, processing is governed by Article 6 (1) lit. b GDPR. In all other cases, the processing of your personal data is governed by Article 6(1) lit. f) GDPR. It is our legitimate interest to handle your inquiries.

4.3 Purpose of data processing

The purpose of data processing is to handle your inquiry. The data are processed exclusively for this purpose. None of your data are forwarded to third parties in this context.

4.4 Retention period for your personal data

Once your inquiry has been handled, we will mark your stored personal data to limit their processing in the future. Unless you have given your explicit consent to their further use, we will delete your personal data after the retention periods stipulated by the tax and trade legislation have expired.

There is no obligation for you to provide your personal data. Providing data is prescribed neither by law nor by a contract nor is it required to make a contract. However, not providing your data may prevent you from using our contact form or its full scope of functions or you may not be able to get into contact with us.

5. Newsletter

We offer a free newsletter on our web pages that you can sign up for.

5.1 Scope of data processing

We process the following personal data when users subscribe to our newsletter:

  • Name
  • E-mail address
  • IP address of accessing client computer
  • Date and time of sending

During the subscription process, you are asked to give your consent to the processing of data. Your subscription is secured by a double opt-in process. The procedure allows us to ensure that the e-mail address entered during subscription is really yours. After entering the required data (name, e-mail address), you will automatically receive an e-mail with an activation link. Clicking this link will confirm your newsletter subscription.

5.2 Legal basis

The processing of your personal data is governed by Article 6(1) lit. a) GDPR.

5.3 Purpose of data processing

The purpose of data processing is to handle the newsletter subscription. The data are processes exclusively for this purpose. None of your data are forwarded to third parties in this context.

5.4 Retention period for your personal data

We will save your personal data while your newsletter subscription exists.

Right of revocation

You have the right to revoke your consent without providing reasons at any time to prevent usage of your data in the future. You can exercise your right, for example by clicking on the unsubscribe link contained in every newsletter e-mail.

There is no obligation for you to provide your personal data. Providing data is prescribed neither by law nor by a contract nor is it required to make a contract. However, not providing our data may prevent you from subscribing to our newsletter.

6. Job application

Our web pages provide information on job vacancies.

6.1 Scope of data processing

6.1.1 Online application tool

You can enter your personal data on our web pages to apply for the posted vacancies. We save your personal data transmitted to us with your application. Which data we process becomes evident from the respective input form. In the forms, only those fields are marked as mandatory that are absolutely necessary to use the associated offer.

As far as permissible within the legal framework, we transfer your personal data to our partner who supports us in applicant selection, i.e. Talentsoft GmbH, Spichernstraße 6, 50672 Cologne, Germany (https://www.talentsoft.com/). This company itself is obliged to obey the applicable laws and regulations on data protection and privacy. In particular, the company is allowed to use the data only to fulfill its tasks according to our order and only on our instructions.

To participate in the application process, you are required to provide personal data in the documents you submit, such as your letter of application, CV, application photo, certificates or other qualification records. These data may be personal data, such as first name, last name, postal address, date of birth, contact data (phone number, e-mail address) or data related to your scholastic and/or vocational history (school certificates, employment references, data on vocational training, job placements, previous employers).

6.1.2 Applications through other channels

Apart from applications through the online tool, you can apply for a vacant job by getting into contact with us (refer to section 4).

To participate in the application process, you are required to provide personal data in the documents you submit, such as your letter of application, CV, application photo, certificates or other qualification records. These data may be personal data, such as first name, last name, postal address, date of birth, contact data (phone number, e-mail address) or data related to your scholastic and/or vocational history (school certificates, employment references, data on vocational training, job placements, previous employers).

6.2 Purpose of data processing

We use the personal data you provide only for the purpose of selecting suitable job candidates. When handling applications, we restrict ourselves to the data you enter directly. This may include data you entered on online business networks or employment websites. If we ask for your gender by requesting you to enter the form of address, we only do so because we want to address you properly.

6.3 Legal basis

The processing of personal data is governed by Article 88(1) GDPR, §26 BDSG (German Federal Data Protection Act).

6.4 Retention period for your personal data

We delete the collected personal data six months after your application has been rejected, unless you have given consent to your personal data being added to our pool of applicants. In this case, the processing of data is governed by Article 6(1) lit. a) GDPR. You are free to revoke your consent at any time.

You need to provide personal data to submit your application. We will be unable to process your application if you do not provide the data.

7. Security

We have implemented technical and organizational security measures to protect your personal data against accidental or intentional manipulation, loss, destruction or access by unauthorized persons. We continuously improve our security measures in line with technological development.

8. Responsibility for external contents

Our web pages contain links to websites and web pages by external providers. We have no influence on whether other providers comply with the applicable laws and regulations on data protection and privacy, nor do we check their compliance. If you consider linked external sites or pages to be in violation of the applicable laws or if you consider them to be otherwise inappropriate, we kindly ask you to tell us that. We will verify your notification and remove the external link, if necessary. We are not responsible for the contents and accessibility of linked external websites or pages.

9. Video surveillance

We have put in place video surveillance on the premises we use.

9.1 Purpose and legal basis of video surveillance

Video surveillance is used to enforce our right to control access to our premises, to prevent criminal acts and to collect evidence related to criminal acts.

Video surveillance is governed by Article 6(1) lit. f) GDPR; the purposes mentioned above constitute our legitimate interest.

9.2 Recipients/transfer of data

We transfer data to contracted service providers that perform monitoring tasks for our company.

In the event of suspected criminal acts, we will additionally transfer the data to the law enforcement authorities, if applicable.

In all other events, we will only transfer data if a legal basis for transfer exists. This may apply in particular if the police or other security authorities take active defense action and demand access to the video surveillance data.

9.3 Data processing outside the European Union

No personal data are processed as part of video surveillance.

10. Rights of the data subjects

If we process your personal data, you are a data subject as defined in Article 4(1) GDPR and have the following rights towards us:

  • Right of access (Article 15 GDPR)
  • Right to rectification (Article 16 GDPR)
  • Right to erasure (Article 17 GDPR)
  • Right to restriction of processing (Article 18 GDPR)
  • Notification obligation (Article 19 GDPR)
  • Right to data portability (Article 20 GDPR)
  • Right to object (Article 21 GDPR)
  • Right to lodge a complaint with a supervisory authority (Article 77 GDPR)
  • Right to withdraw the declaration of consent on processing personal data (Article 7(3) GDPR)
    You have the right to revoke your consent at any time, for example by e-mail to privacy-de(at)samsongroup.remove-this.com. The withdrawal of consent does not affect the lawfulness of data processing based on consent granted before the withdrawal.

Right to object (Article 21 GDPR)

Pursuant to Article 21 GDPR, you have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning yourself which is based on Article 6(1) lit. e) or f) GDPR, including profiling based on those provisions. No automated decision-making takes place on our web pages.

We no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defense of legal claims.

If you want to exercise a right, please contact our data protection officer at privacy-de(at)samsongroup.remove-this.com.

Note that we may request additional information from you under certain conditions to verify your identity. For example, we may ensure that information is not revealed to unauthorized persons when exercising the right of access.

11. Validity of the privacy policy

It may be necessary to revise this privacy policy to further develop our web pages or implement new features. We reserve the right to change this privacy policy at any time with effect for the future. The version as amended and accessible at the time you visited our web pages is valid.

Last revision: February 2023