English
German1. Controller
Evomatec
Enzstraße 40
70376 Stuttgart, Germany
Contact for Data Protection:
By mail to the above address or by e-mail to info(at)evomatec.de
2. System and Statistical Data (Server Logs)
When you visit our websites, your browser automatically transmits data to our server for security and operational purposes (e.g., date/time of access, referring URL, retrieved file/address, browser type/version, operating system, IP address).
This data is stored separately from any other data you enter and is used exclusively to ensure secure operation, perform error analysis, and create statistical evaluations, after which it is deleted. Personal identification is only made if there is a concrete suspicion of unlawful use.
Legal basis: Art. 6(1)(f) GDPR (legitimate interest in security and operational stability).
3. Processing of Personal Data
3.1 Contact and Service Forms
You can contact us through various forms (e.g., sales, press, HR, service, training, trade fairs). The specific data collected depends on the input fields of each form.
Purposes of processing include:
-
Processing your inquiries and making contact (by mail, phone, or electronically)
-
Customer acquisition and appointment scheduling
-
Marketing activities with consent (e.g., newsletters, invitations, mailings)
-
Internal anonymized sales statistics
-
Forwarding to relevant sales or service locations
-
Processing orders in the spare parts shop (see 3.2)
Processors/Recipients:
We may use service providers (e.g., hosting providers) or affiliated companies/distributors that process your data strictly according to our instructions and only for the purposes mentioned.
3.2 Spare Parts Shop (Registration & Orders)
Orders in the spare parts shop require prior registration provided by us (username/password). These credentials are linked to your stored company and contact details and used to process orders.
3.3 Application Process
We process applicant data for the purpose of carrying out the recruitment process. When submitted via form or e-mail, processing takes place electronically.
If an employment contract is concluded, the data will be further processed for the execution of the employment relationship in compliance with legal requirements.
If no employment relationship is established, the application documents are deleted six months after rejection unless legitimate interests (e.g., obligations under the AGG) prevent this.
Note for e-mail applications:
Please encrypt your attachments yourself or use postal mail instead.
Legal bases:
-
§ 26 BDSG in conjunction with Art. 6(1)(b) GDPR (contract initiation/application)
-
Art. 9(2)(b) GDPR (special categories voluntarily provided, e.g., disability)
-
Art. 9(2)(a) GDPR (consent, e.g., health data where necessary)
3.4 Legal Bases Overview
We process personal data based on:
-
Art. 6(1)(a) GDPR (consent) – e.g., marketing/newsletters
-
Art. 6(1)(b) GDPR (contract/initiation) – e.g., product inquiries, shop
-
Art. 6(1)(c) GDPR (legal obligation) – e.g., retention duties
-
Art. 6(1)(f) GDPR (legitimate interests) – e.g., IT security/log files
-
§ 26 BDSG, Art. 9 GDPR – applications/special categories (see above)
3.5 Storage Duration
We store personal data only as long as necessary for the stated purposes or as required by law (especially HGB, AO). After the purpose has been fulfilled or retention periods have expired, the data will be deleted or restricted in processing if required by law.
3.6 No Automated Decision-Making
No automated decision-making, including profiling, takes place.
4. Data Transmission
The transmission of personal data from your browser to our web server is encrypted (SSL/TLS). Subsequent internal e-mail transport may be unencrypted, depending on the hosting provider’s configuration. Please do not send highly sensitive data by e-mail; instead, use postal mail or another secure method provided by us.
Data is only passed on to third parties if necessary to process your request (e.g., affiliated companies, distributors, service providers) or if legally required. All service providers are contractually bound to data protection, confidentiality, and security obligations (Art. 28 GDPR).
5. Cookies and External Services
We use cookies to make our website user-friendly, efficient, and secure. Technically necessary cookies (“essential cookies and similar technologies”) are required for operation and set without consent.
Additional categories (only with consent):
-
Functional/personalization cookies (e.g., language settings)
-
Analytics/profiling cookies (e.g., Matomo)
-
Cookies for social/multimedia services (e.g., Vimeo video player)
Processing begins only after your consent. External content (e.g., videos) is displayed only after approval. You can manage or withdraw your consent at any time via the “Cookie Settings” link in the footer.
5.1 Matomo (Web Analytics)
After your consent, we use Matomo to analyze website usage. Matomo sets cookies, and IP addresses are immediately anonymized. No data is shared with third parties. You may withdraw your consent at any time (see “Cookie Settings”).
Legal basis: Art. 6(1)(a) GDPR (consent).
5.2 Vimeo (Video Integration)
We use Vimeo (Vimeo, LLC, 555 West 18th Street, New York, NY 10011, USA) to embed videos. When activated (consent given), a connection to Vimeo servers is established, and Vimeo receives information about the visited page.
If you are logged in to Vimeo, your visit may be associated with your account. Please log out of Vimeo before visiting and clear Vimeo cookies if necessary.
Further information: https://vimeo.com/privacy
Legal basis: Art. 6(1)(a) GDPR (consent).
6. External Links
Our website contains links to external sites whose content we do not control. The operators of these sites are solely responsible for compliance with data protection regulations. Upon becoming aware of legal violations, we will remove such links immediately.
7. Your Rights
7.1 Access, Rectification, Restriction, Deletion, Data Portability, Withdrawal
You have the right to:
-
Access the personal data we process
-
Correct inaccurate or incomplete data
-
Restrict processing
-
Delete data (“right to be forgotten”)
-
Data portability (structured, commonly used, machine-readable format)
-
Withdraw consent with future effect (Art. 7(3) GDPR)
If legal retention obligations apply, we restrict processing instead of deleting.
7.2 Right to Object (Art. 21 GDPR)
You may object at any time, for reasons arising from your particular situation, to processing based on Art. 6(1)(f) GDPR, including profiling. We will then cease processing unless we demonstrate compelling legitimate grounds or the processing serves to assert, exercise, or defend legal claims.
7.3 Objection to Direct Marketing
If we process data for direct marketing purposes (with consent), you may object at any time, including profiling related to direct marketing. Upon objection, we will stop processing data for these purposes.
7.4 Right to Lodge a Complaint
You have the right to file a complaint with a data protection supervisory authority if you believe your data is not being processed in compliance with data protection laws.
8. Data Security
We protect our systems using appropriate technical and organizational measures (TOMs) against loss, destruction, unauthorized access, alteration, or disclosure. Our security measures are continuously improved in line with technological developments.
Note regarding account access (shop):
Access is password-protected. Please keep your login credentials confidential and close your browser after use, especially on shared devices.
9. Obligation to Provide Data
For inquiries via contact forms, only the information necessary to process your request is required. Without this data, we cannot respond to your inquiry. There is no obligation to provide additional data.
10. Further Information & Contact
Evomatec – Data Protection Officer
Enzstraße 40
70376 Stuttgart, Germany
E-mail: info(at)evomatec.de
Evomatec – Marketing
Enzstraße 40
70376 Stuttgart, Germany
E-mail: info(at)evomatec.de