1. Data protection at a glance
Data collection on our website
Who is responsible for data collection on this website?
The following company is responsible for the data processing:
F + Z Baugesellschaft, Zweigniederlassung der Hecker Bau GmbH & Co. KG
How do we collect your data?
On the one hand, your data is collected by you communicating it to us. This may, for example, involve data that you enter in a contact form.
Other data is automatically collected by our IT systems when you visit the website. These are mainly technical data (e.g. Internet browser, operating system or time of the page call). This data is collected automatically as soon as you enter our website.
What do we use your data for?
Part of the data is collected to ensure that the website is error-free. Other data can be used to analyse your user behaviour in order to optimise our website. We use the data that you specifically provide to us, for example in the contact form, to process your respective request.
Why may we process your data?
The basis for data processing is Art. 6 Para. 1 lit. b DSGVO, which permits the processing of data for the fulfilment of a contract or pre-contractual measures. The legal basis for the optimisation of the website results from Art. 6 para. 1 lit. f DSGVO.
What rights do you have with regard to your data?
(1) You have the right at any time and free of charge to obtain information about the origin, recipient and purpose of your stored personal data. If you have given your consent to the use of data, you can withdraw it at any time. You also have the right to demand the correction, blocking or deletion of this data.
(2) You have the right to obtain your data we process automatically on the basis of your consent or in fulfilment of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another responsible party, this will only be done to the extent that this is technically feasible.
(3) In the event of breaches of data protection law, you also have the right to lodge a complaint with the competent supervisory authority. A list of the supervisory authorities and their contact details can be found at the following link: www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html
(4) The data protection officer of our company is Mr. Uwe Lüllemann. You may contact him using the information below:
SK-Consulting Group GmbH
Osterweg 2; 32549 Bad Oeynhausen
(5) For more details and information or to revoke your consent to data processing, please send an e-mail to: datenschutz@SK-consulting.com
Analysis tools and third-party tools
When you visit our website, your surfing behaviour can be statistically evaluated. This is done primarily with cookies and so-called analysis programs. The analysis of your surfing behaviour is usually anonymous; the surfing behaviour cannot be traced back to you. You can object to this analysis or prevent it by not using certain tools. Detailed information on this can be found in the following privacy statement.
You can object to this analysis. You will find information about the possibilities of objection under the item “What rights do you have with regard to your data?”.
2. General information and mandatory information
The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and according to the legal data protection regulations as well as this data protection explanation. We would like to point out that data transmission on the Internet (e.g. communication by e-mail) can be subject to security gaps. A complete protection of the data against access by third parties is not possible.
SSL or TLS encryption
This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or enquiries that you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line. If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
Objection to advertising mails
We hereby object to the use of contact data published within the scope of the imprint obligation to send unsolicited advertising and information material. The operators of this website explicitly reserve the right to take legal action against unsolicited mailing or e-mailing of spam and other similar advertising materials.
Our website offers you external links within our partner references. This data protection declaration does not extend to the pages of the external providers; the data protection declarations of the respective providers apply there. However, we always endeavour to ensure that the respective providers comply with the data protection standards.
3. Data collection on our website
Most of the cookies we use are "session cookies". They are automatically deleted at the end of your visit. Other cookies remain stored on your end device until you delete them. These cookies enable us to recognize your browser during your next visit.
You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, accept cookies for certain cases or generally exclude them and activate the automatic deletion of cookies when closing the browser. If cookies are deactivated, the functionality of this website may be restricted.
Cookies that are required to carry out the electronic communication process or to provide certain functions requested by you (e.g. shopping basket function) are stored on the basis of Art. 6 para. 1 lit. f DSGVO. The website operator has a justified interest in the storage of cookies for the technically error-free and optimised provision of its services. Insofar as other cookies (e.g. cookies for analysing your surfing behaviour) are stored, these are dealt with separately in this data protection declaration.
Server log files
The provider of these pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are the following information:
■Browser type and browser version
■Operation system used
■ Website or file visited
■ Device type used
■Hostname of the accessing computer
■Time of the server request
■Search term, if the search query was made via Google or Bing.
Use of collected data in statistics
Our website provider provides us with the following anonymous statistics. We do not use or evaluate the statistics and cannot currently deactivate the compilation of the statistics:
■Number of visits: visitors, sessions, sessions, page views and search engine robots.
■ Visitor behaviour: duration per session, page views per session and bounce rate.
■Site analysis: entry pages, exit pages, error pages, most visited pages, pages.
■Sites with high bounce rate and search terms.
■Origins sites: all origin sites and referring sites, all origin pages and referring pages.
■Location data of visitors.
■Browser & systems: browser, browser versions, operating systems and operating system versions.
Who can receive my personal data?
In order to be able to process your request, we transfer your data to companies in our group of companies. These are currently as follows: Projektbau Depenbrock GmbH & Co. KG, Depenbrock Systembau GmbH & Co. KG, Depenbrock Polska Sp. z o.o. Sp. K., Depenbrock Gebäudemanagement GmbH & Co. KG, Depenbrock Bau GmbH & Co. KG, Hecker Bau GmbH & Co. KG, Depenbrock Partnering GmbH & Co. KG and Wilhelm Becker GmbH & Co. KG. During processing, your anonymised data can be viewed by our website providers, who are contractually bound. A further transfer does not take place.
Will you transfer data from me to countries outside the European Union?
This is not planned by us.
How long will you store my data?
Your data will be stored until we have finally processed your request and existing legal retention periods have expired.
Do I have to provide my data?
In order for you to be able to use our website offers or for us to process a request from you, it is necessary that you provide us with personal data. For a (planned) conclusion as well as the execution of the contract with you, the provision is absolutely necessary or legally prescribed. We cannot conclude a contract with you in the event of non-delivery.
If you have complaints, you can contact the responsible supervisory authority at any time. The supervisory authority mentioned under point 1 (3) is responsible for our company. You have the right to an effective judicial remedy against a supervisory authority (Art. 78 DSGVO) and against our company (Art. 79 DSGVO).
Automated decision-making / profiling
Automatic decision-making / profiling does not take place.
4. Affected rights
Note on your rights
As a subject of data processing, you have the following rights under the Basic Data Protection Ordinance (hereinafter also referred to as "Data Subject Rights"):
Information rights (according to Article 15 DSGVO)
You have the right to request information as to whether we process personal data about you or not. If we process personal data from you, you have the right to know,
■why we process your data
■what types of personal data we process
■what types of recipients receive or are to receive your personal data
■how long we store your data; if it is not possible to specify the storage period, we must inform you how the storage period is to be determined (e.g. after expiry of statutory storage periods)
■that you have the right to rectify and delete data concerning you, including the right to limit the processing and/or the possibility of objecting
■that you have the right to appeal to a supervisory authority
■where your data originate, if we should not have collected it directly from you
■if your data will be used for an automatic decision and, if so, to know what the logic of the decision is and what consequences the automated decision-making may have for you
■ that, if data about you is transferred to a country outside the European Union, you are entitled to information as to whether it is so and, if it is so, on the basis of which guarantees an adequate level of protection is ensured for the data recipient
■that you have the right to request a copy of your personal data. Data copies are always made available in electronic form. The first copy is free of charge; a reasonable fee may be charged for further copies. A copy can only be made available if the rights of other persons are not affected by this.
Right to rectify data (according to Article 16 DSGVO)
You have the right to ask us to rectify your data if it is incorrect and/or incomplete. This right also includes the right to complete data by means of additional declarations or notes. Corrections and/or additions must be made without undue delay.
Right to delete your personal data (according to article 17 DSGVO)
You have the right to ask us to delete your personal data if
■personal data is no longer required for the purposes they were collected and processed for;
■the data processing takes place on the basis of a consent given by you and you have withdrawn the consent.
(However, this does not apply if
- another legal permission for the data processing exists;
- you have objected to data processing the legal permission of which is in the so-called "legitimate interest" (as defined in Article 6(1)(e) or (f));
- there are legitimate and prior reasons for further processing.)
■you have objected to data processing for the purpose of direct marketing;
■ your personal data have been unlawfully processed;
■a child's data has been collected for information society services (=electronic service) on the basis of consent (pursuant to Art. 8 para. 1 DSGVO).
The right to have your personal data deleted does not exist if
■the right to freedom of expression and information is contrary to the request for deletion;
■the processing of personal data is required
-for the fulfilment of a legal obligation (e.g. legal storage obligations),
-to perform public tasks and interests in accordance with applicable law (including "public health") or
-for archiving and/or research purposes
■personal data is necessary for the assertion, exercise or defense of legal claims.
The deletion must take place immediately (without culpable hesitation). If personal data has been made public by us (e.g. on the Internet), we must ensure within the framework of what is technically possible and reasonable that other data processors are also informed of the request for deletion, including the deletion of links, copies and/or replications.
Right to limit data processing (Art. 18 DSGVO)
You have the right to limit the processing of your personal data in the following cases:
■If you have contested the accuracy of your personal data, you may request that we not use your data for any other purpose for the duration of the accuracy check and thus restrict its processing.
■In instances of unlawful data processing you can demand the restriction of data use instead of data deletion.
If you need your personal data to assert, exercise or defend legal claims, but we no longer need your personal data, you can demand that we restrict processing to the purposes of legal prosecution.
If you have lodged an objection against data processing (Art. 21 para. 1 DSGVO) and it is not yet clear whether our interests in processing outweigh your interests, you may demand that your data not be used for other purposes for the duration of the audit and that their processing is thus restricted.
Personal data the processing of which has been restricted at your request, subject to storage, may only be processed
■with your consent,
■to assert, exercise or defense legal claims,
■to protect rights of other natural or legal persons, or
■for reasons of important public interest.
Should a processing restriction be lifted, you will be informed in advance.
Right to data transfer (Art. 20 DSGVO)
You have the right to request the data which you have made available to us from us in a common electronic format (e.g. as a PDF or Excel document). You may also request us to transfer this data directly to another company (designated by you), provided that this is technically possible. The prerequisite for you having this right is that the processing is carried out on the basis of a consent or for the execution of a contract and with the aid of automated procedures. The exercise of the right to data transferability must not impair the rights and freedoms of other persons. If you make use of the right to data transfer, you still have the right to data deletion in accordance with Article 17 DSGVO.
Right to object to certain data processing operations (Art. 21 DSGVO)
If your data is processed for the performance of tasks in the public interest or for the performance of legitimate interests, you may object to this processing. You must explain to us the reasons resulting from your particular situation for your objection. These can be, for example, special family circumstances or secrecy interests worthy of protection.
In the event of an objection, we must refrain from any further processing of your data for the aforementioned purposes, unless,
■there are compelling and legitimate reasons for processing which override its interests, rights and freedoms, or
■the processing is necessary for the assertion, exercise or defence of legal claims.
You can object to the use of your personal data for direct marketing at any time; this also applies to profiling insofar as it is connected with direct marketing. In the event of an objection, we may no longer use your data for direct marketing. Direct marketing and/or profiling will under no circumstances be initiated or carried out by us.
Prohibition of automated decisions/profiling (Art. 22 DSGVO)
Decisions made by us, which have a legal consequence for you or significantly affect you, must not be based exclusively on automated processing of personal data. This also includes profiling.
This prohibition does not apply insofar as the automated decision
■is necessary for the conclusion or performance of a contract with you is necessary,
■is permitted by law if that law contains reasonable measures to protect your rights and freedoms and your legitimate interests, or
■takes place with your explicit consent.
Decisions based exclusively on automated processing of special categories of personal data (= sensitive data) are only permissible if they are based on your explicit consent or if there is a considerable public interest in the processing and appropriate measures have been taken to protect your rights and freedoms as well as your legitimate interests.
Exercise of data subject rights
In order to exercise the rights of data subjects, please contact the authorities mentioned under point 1. Queries submitted electronically will generally be answered electronically. The information, notifications and measures to be made available under the DSGVO, including "the exercise of data subjects' rights, are generally provided free of charge. Only in the case of manifestly unfounded or excessive applications are we entitled to charge an appropriate fee for the processing or to refrain from taking action (Art. 12 para. 5 DSGVO).
If there are justified doubts as to your identity, we may request additional information from you for the purpose of identification. If we are unable to identify you, we are entitled to refuse to process your request. If we are unable to identify you, we will inform you separately as far as possible (see Art. 12 para. 6 and Art. 11 DSGVO).
Requests for information are usually processed immediately (within one month) upon receipt. The time limit may be extended by a further two months if this is necessary in view of the complexity and/or number of requests; in the event of an extension of the time limit, we will inform you of the reasons for the delay within one month upon receipt of your request. If we do not act on a request, we will inform you immediately within one month upon receipt of the reasons for the delay and inform you of the possibility of lodging a complaint with a supervisory authority or of taking legal action. (Art. 12 para. 3; 4 DSGVO).
Please note that you can only exercise your rights of data subjects within the framework of restrictions and limitations provided by the Union or the member states (Art. 23 DSGVO).
5. Analysis tools
This site currently does not use any analysis tools.
6. Use of social media buttons with "Shariff
On our website we use the c't project "Shariff" developed by Heise.de. Through this we want to avoid a comprehensive recording and evaluation of your visit by providers of social media / social sharing functions. Shariff replaces the usual share buttons of social networks and thus protects your surfing behaviour. Through Shariff, the share buttons of the social networks listed below are only integrated into our website as a graphic. The graphic contains a link to the corresponding social network. Without the use of Shariff, the usual social media buttons would transfer your data to the social networks each time you visit a page and provide them with information about your surfing behaviour, regardless of whether you are logged in or a member of the social network. A Shariff button, on the other hand, establishes direct contact between the social network and you only when you actively click on the Share button. If you do not click on the Shariff button, there will be no exchange between you and the social network. In this way, Shariff prevents you from leaving a digital trace by visiting the site.
Further information about the c't project "Shariff" can be found at: www.heise.de/ct/artikel/Shariff-Social-Media-Buttons-mit-Datenschutz-2467514.html.
On our website we integrate the following social networks with Shariff:
The purpose and scope of the data collection and the further processing and use of the data by the providers on their pages, as well as your rights in this regard and setting options to protect your privacy, please refer to the privacy notices of the providers.