Information on collection of personal data
according to the GDPR
for customers

The EU General Data Protection Regulation requires us to provide you with comprehensive information for processing of your personal data. In compliance with this obligation, we inform you of the following:

I. Processor
1.1 Name and contact details of the controller
Pelmar Engineering Ltd.
3, Bustenai St., P.O. Box 2418
47302, Ramat- Hasharon, Israel
Phone: +972(3)5409277
Fax: +972(3)5493520
Email: mail@pelmar.com

1.2 Name and contact details of the representative in the EU according to sect. 27 GDPR

Pelmar Engineering GMBH
Agnes-Pockels-Str. 2
D-63457 Hanau, Germany
Phone: +4961819062810
Fax: +4961819062811
Email: Sales@pelmar.de

1.3 Contact details of the data protection officer

We did not designate a data protection officer, since we are not legally obliged to do so.

II. Processing scope
2.1 Categories of personal data concerned that are processed
In the scope of our business relationship and depending on the specific purpose for which we collect your data, we regularly process the following data or cate-gories of data:
General:

Address data
Contact data
Bank information
Personal data
identification data
Professional work
Agreements/conventions
Complaints/incidents
Current workplace

2.2 Source of personal data
We generally collect your data in direct contact with you or from the company you work for. However, it is also possible that you may submit data on persons who are responsible for us in your company to us.

2.3 Duration of storage of the data
The personal data collected by us will be stored according to the proviso of our erasure concept until the end of the statutory archiving obligation; they will then be erased, except of we are obligated to archive the data for a longer period according to section 6 para. 1 s. 1 lit. c GDPR due to archiving and documen-tation obligations under e.g. tax and commercial law or if you have consented to storage beyond this according to sect. 6 para. 1 s. 1 lit. a GDPR.
Subject to such archiving obligations, data are deleted if the purpose for which they were collected has ended.
As far as legally permitted, data will also be stored if this is required to assert or defend any legal claims.

 2.4 Purposes of processing
The purposes of processing of your data are
- Processing of a business relationship between us, including communication between us, in particular for processing of the payment transactions, ac-counting and performance of the contractual obligations between us.

2.5 Legal basis for processing
We only process your data if there is a legal basis for it. This is the case ac-cording to sect. 6 para. 1 GDPR when at least one of the following provisions is met.
a. you have given consent to the processing of your personal data for one or several specific purposes;
b. processing is necessary for the performance of a contract to which you are a party or in order to take steps at your request prior to entering into a contract;
c. processing is necessary for compliance with a legal obligation to which we are subject;
d. processing is necessary in order to protect the vital interests of the data subject or of another natural person;
e. processing is necessary to maintain our legitimate interests except where such interests are overridden by your interests or fundamental rights and freedoms which require protection of personal data.

We will therefore process your data in particular, if
- you have given us your consent to do so;
- processing is required in the scope of processing of a contract concluded between you and us;
- processing is required in the scope of contract preparation;
- processing is required by law;
- there is an emergency in which the protection of personal data must be put behind vital interests; your interests are not overruling in the scope of con-sideration of interest and in particular under consideration of your reasona-ble expectations, foreseeability of the processing performed by us, the rela-tionship between us on the one hand and our legal, economic and ideational interests or those of a third party on the other hand

2.6 Legitimate interests within the meaning of sect. 6 para. 1 lit. f GDPR
Our legitimate interests – or those of a third party – may be
a. the presence of a legal relationship between us;
b. the prevention of fraud;
c. measures to ensure and improve the safety of IT systems;
d. measures to protect our company from illegal actions and
e. internal administrative purposes, in particular exchange of data within our group of companies.

2.7 Legal or contractual obligation to provide the data
An obligation to provide data may result
a. from a contract you have concluded with us and the performance of which data collection serves in the cases of item 2.5 lit. b;
b. from the statutory provisions we are subject to or – in accordance with sect. 6 para. 2 and 3 GDPR – the law of the European Union or the law of the member states of the European Union in the cases of item 2.5 lit. c.;
c. from general support or contractual secondary obligations that are not spe-cifically targeted at data collection in the cases of items 2.5 lit. d. and e.

2.8 Requirement of the provision of data for conclusion of a contract
The data collected by us are usually mandatory for founding and processing of a business relationship, including meeting the obligations resulting from this.

2.9 Other obligation to provide the data
There usually is no other obligation to provide the data.

2.10 Possible consequences of not providing data
Not providing personal data makes communication between us considerably more difficult or impossible - e.g.in the area of communication by email.


2.11 Presence of automated decision-making (including profiling)
We do not use any automated supervision or evaluate systems.

III. Forwarding and other countries
3.1 Recipients or categories of recipients of the personal data
The data collected by us will be forwarded to other recipients and third parties as well under consideration of the statutory provisions.

These specifically are:

Internal recipients External recipients
- Business management - Tax advisor
- Accounting / book-keeping - Financial administration
- Purchase / procurement - Lawyer
- Department manager  - Companies of our group
  - External data processors (contract processors)

 


External data processors may be from the areas of archive, mainte-nance and care for EDP systems or the company website or marketing. These usually are contract processors within the meaning of sect. 4 no. 10 GDPR, so that processing of the data through them does not constitute transmission with-in the meaning of sect. 4 no. 2 GDPR.

3.2 Intention of the controller to transmit personal data to a third country or an international organisation
We intend to transmit personal data to members of our group. That includes Pelmar Engineering companies in China and India.

3.3 Presence or absence of a commission decision on appropriateness
There is no commission decision on appropriateness that covers the transfer of personal data to our Pelmar Engineering companies in China and India.

 3.4 Reference to suitable or appropriate safeguards
According to Section 46 (1) GDPR in the absence of an adequacy decision of the Commission, a controller or processor may transfer personal data to third parties or an international organisation only if the controller or processor has provided appropriate safeguards, and on condition that enforceable data sub-ject rights and effective legal remedies for data subjects are available.
According to Section 46 (2c) GDPR appropriate safeguards are standard data protection clauses adopted by the Commission in accordance with the exami-nation procedure referred to in Article 93 (2) GDPR.
By decision of 27 December 2004, the Commission adopted the EU standard contractual clauses for the transfer of personal data to countries to third coun-tries.
The companies of our Pelmar Group have made these EU standard contrac-tual clauses the basis for data processing by concluding corresponding con-tracts.

IV. Your rights
4.1 You as the data subject have various rights under the General Data Protection Regula-tion. These are
• the right to access to the data that are stored by us (sect. 15 GDPR)
• the right to rectification of incorrect data (sect. 16 GDPR)
• the right to erasure of the data if there is no legal basis for continued storage (sect. 17 GDPR)
• the right to restriction of processing of the data to specific purposes (sect. 18 GDPR)
• the right to data portability (sect. 20 GDPR) and
• the right to object to processing of your data (sect. 21 GDPR).
If processing of your data is based on consent (see item 2.5 lit. a), you have the right to withdraw your given consent at any time. The legality of the processing taking place based on given consent until the withdrawal is not affected by the withdrawal.

 Separate information about the right to object under Article 21 GDPR
According to Article 21 (1) of the GDPR, you have the right at any time, for reasons arising from your particular situation, to object to the processing of personal data re-lating to you pursuant to Article 6 (1) (f) of the GDPR (processing to safeguard the le-gitimate interests of the responsible entity or a third party).
If you object, we will no longer process your personal data, unless we can demon-strate compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or the processing is for the purpose of asserting, exercising or defence of legal claims.
If the processing is to operate direct mail, you have the right, under Article 21 (2) GDPR, to object at any time to the processing of personal data relating thereto for the purpose of such advertising; this also applies to the profiling, as far as it is associated with such direct mail.

In addition to this, you have the right to complain to a supervisory authority in accord-ance with sect. 77 GDPR if you believe that processing of the data concerning you vi-olates provisions under data protection law. The supervisory authority relevant for us is:
Der Hessische Beauftragte für Datenschutz und Informationsfreiheit
Gustav-Stresemann-Ring 1
65021 Wiesbaden
Fon: +49 611 1408 - 0
Fax: +49 611 1408 – 611
Contact form: https://datenschutz.hessen.de/über-uns/kontakt

Information on collection of personal data
according to the GDPR
for business partners/suppliers

The EU General Data Protection Regulation requires us to provide you with comprehensive information for processing of your personal data. In compliance with this obligation, we inform you of the following:

I. Processor
1.1 Name and contact details of the controller
Pelmar Engineering Ltd.
3, Bustenai St., P.O. Box 2418
47302, Ramat- Hasharon, Israel
Phone: +972(3)5409277
Fax: +972(3)5493520
Email: mail@pelmar.com

1.2 Name and contact details of the representative in the EU according to sect. 27 GDPR

Pelmar Engineering GMBH
Agnes-Pockels-Str. 2
D-63457 Hanau, Germany
Phone: +4961819062810
Fax: +4961819062811
Email: Sales@pelmar.de

1.3 Contact details of the data protection officer

We did not designate a data protection officer, since we are not legally obliged to do so.

 II. Processing scope
2.1 Categories of personal data concerned that are processed
In the scope of our business relationships and depending on the specific pur-pose for which we collect your data, we regularly process personal data also if you are a legal entity. This is the case, for example, if we collect data of per-sons from the management, personal contacts at your company such as sales employees, key account managers or other persons in departments of your company who are responsible for our business relationships.
In the scope of this, we collect the following data or data categories:
General:

Identification data
Address data
Contact data
Function in the company
Professional activities
Complaints/incidents

2.2 Source of personal data
We generally collect your data in direct contact with the data subject. However, it is also possible that you may submit data on persons who are responsible for us in your company to us.

2.3 Duration of storage of the data
The personal data collected by us will be stored according to the proviso of our erasure concept until the end of the statutory archiving obligation; they will then be erased, except of we are obligated to archive the data for a longer period according to section 6 para. 1 s. 1 lit. c GDPR due to archiving and documen-tation obligations under tax and commercial law or if you have consented to storage beyond this according to sect. 6 para. 1 s. 1 lit. a GDPR.
Subject to such archiving obligations, data are deleted if the purpose for which they were collected has ended.
As far as legally permitted, data will also be stored if this is required to assert or defend any legal claims.


2.4 Purposes of processing
The purposes of processing of your data are
- Processing of a business relationship between us, including communication between us, in particular for processing of the payment transactions, ac-counting and performance of the contractual obligations between us.

2.5 Legal basis for processing
We only process your data if there is a legal basis for it. This is the case ac-cording to sect. 6 para. 1 GDPR when at least one of the following provisions is met.
a. you have given consent to the processing of your personal data for one or several specific purposes;
b. processing is necessary for the performance of a contract to which you are a party or in order to take steps at your request prior to entering into a contract;
c. processing is necessary for compliance with a legal obligation to which we are subject;
d. processing is necessary in order to protect the vital interests of the data subject or of another natural person;
e. processing is necessary to maintain our legitimate interests except where such interests are overridden by your interests or fundamental rights and freedoms which require protection of personal data.

2.6 Legitimate interests within the meaning of sect. 6 para. 1 lit. f GDPR
Our legitimate interests – or those of a third party – may be
a. the presence of a legal relationship between us;
b. the prevention of fraud;
c. measures to ensure and improve the safety of IT systems;
d. measures to protect our company from illegal actions and
e. internal administrative purposes, in particular exchange of data within our group of companies

2.7 Legal or contractual obligation to provide the data
An obligation to provide data may result
a. from a contract you have concluded with us and the performance of which data collection serves in the cases of item 2.5 lit. b;
b. from the statutory provisions we are subject to or – in accordance with sect. 6 para. 2 and 3 GDPR – the law of the European Union or the law of the member states of the European Union in the cases of item 2.5 lit. c.;
c. from general support or contractual secondary obligations that are not spe-cifically targeted at data collection in the cases of items 2.5 lit. d. and e.

2.8 Requirement of the provision of data for conclusion of a contract
The data collected by us are usually mandatory for founding and processing of a business relationship, including meeting the obligations resulting from this.

2.9 Other obligation to provide the data
There usually is no other obligation to provide the data.

2.10 Possible consequences of not providing data
Not providing personal data of persons working for your company usually only makes communication between us considerably more difficult or impossible - e.g.in the area of communication by email.

2.11 Presence of automated decision-making (including profiling)
We do not use any automated supervision or evaluate systems.

III. Forwarding and other countries
3.1 Recipients or categories of recipients of the personal data
The data collected by us will be forwarded to other recipients and third parties as well under consideration of the statutory provisions.

These specifically are:

 

Internal recipients External recipients
- Business management - Tax advisor
- Accounting / book-keeping - Financial administration
- Purchase / procurement - Lawyer
- Department manager  - Companies of our group
  - External data processors (contract processors)

 

 

External data processors may be from the areas of archive, mainte-nance and care for EDP systems or the company website or marketing. These usually are contract processors within the meaning of sect. 4 no. 10 GDPR, so that processing of the data through them does not constitute transmission with-in the meaning of sect. 4 no. 2 GDPR.

3.2 Intention of the controller to transmit personal data to a third country or an international organisation
We intend to transmit personal data to members of our group. That in-cludes Pelmar Engineering companies in China and India.

3.3 Presence or absence of a commission decision on appropriateness
There is no commission decision on appropriateness that covers the transfer of personal data to our Pelmar Engineering companies in China and India.

3.4 Reference to suitable or appropriate safeguards
According to Section 46 (1) GDPR in the absence of an adequacy de-cision of the Commission, a controller or processor may transfer personal data to third parties or an international organisation only if the controller or processor has provided appropriate safeguards, and on condition that enforceable data subject rights and effective legal remedies for data subjects are available.
According to Section 46 (2c) GDPR appropriate safeguards are standard data protection clauses adopted by the Commission in accordance with the exami-nation procedure referred to in Article 93 (2) GDPR.
By decision of 27 December 2004, the Commission adopted the EU standard contractual clauses for the transfer of personal data to countries to third coun-tries.
The companies of our Pelmar Group have made these EU standard contrac-tual clauses the basis for data processing by concluding corresponding con-tracts.

IV. Your rights
4.1 You as the data subject have various rights under the General Data Protection Regula-tion. These are
• the right to be informed about the data concerning you that are stored by us (sect. 15 GDPR)
• the right to rectification of incorrect data (sect. 16 GDPR)
• the right to erasure of the data if there is no legal basis for continued storage (sect. 17 GDPR)
• the right to restriction of processing of the data to specific purposes (sect. 18 GDPR)
• the right to data portability (sect. 20 GDPR) and
• the right to object to processing of your data (sect. 21 GDPR).
If processing of your data is based on consent (see item 2.5 lit. a), you have the right to withdraw your given consent at any time. The legality of the processing taking place based on given consent until the withdrawal is not affected by the withdrawal.

Separate information about the right to object under Article 21 GDPR
According to Article 21 (1) of the GDPR, you have the right at any time, for reasons arising from your particular situation, to object to the processing of personal data re-lating to you pursuant to Article 6 (1) (f) of the GDPR (processing to safeguard the le-gitimate interests of the responsible entity or a third party).
If you object, we will no longer process your personal data, unless we can demon-strate compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or the processing is for the purpose of asserting, exercising or defence of legal claims.
If the processing is to operate direct mail, you have the right, under Article 21 (2) GDPR, to object at any time to the processing of personal data relating thereto for the purpose of such advertising; this also applies to the profiling, as far as it is associated with such direct mail.

In addition to this, you have the right to complain to a supervisory authority in accord-ance with sect. 77 GDPR if you believe that processing of the data concerning you vi-olates provisions under data protection law. The supervisory authority relevant for us is:
Der Hessische Beauftragte für Datenschutz und Informationsfreiheit
Gustav-Stresemann-Ring 1
65021 Wiesbaden
Fon: +49 611 1408 - 0
Fax: +49 611 1408 - 611
Contact form: https://datenschutz.hessen.de/über-uns/kontakt

 

Contact Us

Thank You!

Thank you for your interest in our products. we will be touch soon